CVE Vulnerability
CVE-2020-2097
Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins.
References
| Link | Resource |
|---|---|
| https://jenkins.io/security/advisory/2020-01-15/#SECURITY-814 | Vendor Advisory |
Configurations
Configuration 1
|
Information
Published : 2020-01-15 04:15
Updated : 2020-01-23 06:15
NVD link : CVE-2020-2097
Mitre link : CVE-2020-2097
Products Affected
No products.
CWE