216.73.217.64

CVE-2024-43045

· Published 07/08/2024 14:15 · Modified 07/08/2024 15:17

Labels: CVE-2024-43045 2024-08-07CVE-2024-43045[email protected]

Essential information

Published
07/08/2024 14:15
Modified
07/08/2024 15:17
Author
Creator
CISA KEV
No
CWE

Description

Jenkins 2.470 and earlier, LTS 2.452.3 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to access other users' "My Views".

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References