A missing permission check in Jenkins Pipeline: Shared Groovy Libraries Plugin 2.14 and previous versions allowed users with Overall/Read access to obtain limited information about the content of SCM repositories referenced by global libraries.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins pipeline\\ shared_groovy_libraries |
||
redhat openshift container platform 3.11 |
||
redhat openshift container platform 4.1 |