CVE-2019-10308

A missing permission check in Jenkins Static Analysis Utilities Plugin 1.95 and earlier in the DefaultGraphConfigurationView#doSave form handler method allowed attackers with Overall/Read permission to change the per-job default graph configuration for all users.
References
Configurations

Configuration 1

cpe:2.3:a:jenkins:static_analysis_utilities:*:*:*:*:*:jenkins:*:*

Information

Published : 2019-04-30 01:29

Updated : 2020-10-02 02:42


NVD link : CVE-2019-10308

Mitre link : CVE-2019-10308

Products Affected
No products.
CWE