A missing permission check in Jenkins Support Core Plugin 2.63 and previous versions allows attackers with Overall/Read permission to delete support bundles.
Jenkins is an open source automation server which enables developers around
the world to reliably build, test, and deploy their software The following
releases contain fixes for security vulnerabilities:
* Anchore Container Image Scanner Plugin 1020
* Google Compute Engine Plugin 420
* JIRA Plugin 3011
* QMetry for JIRA - Test Management Pl ...