FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

jenkins -- multiple vulnerabilities

Affected packages
jenkins < 2.471
jenkins-lts < 2.462.1

Details

VuXML ID db8fa362-0ccb-4aa8-9220-72b7763e9a4a
Discovery 2024-08-07
Entry 2024-08-07

Jenkins Security Advisory:

Description

(Critical) SECURITY-3430 / CVE-2024-43044

Arbitrary file read vulnerability through agent connections can lead to RCE

Description

(Medium) SECURITY-3349 / CVE-2024-43045

Missing permission check allows accessing other users' "My Views"

[source]

References

CVE Name CVE-2024-43044
CVE Name CVE-2024-43045
URL https://www.jenkins.io/security/advisory/2024-08-07/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.