An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and users.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-03-13T13:00:00Z

Updated: 2024-09-17T00:42:25.986Z

Reserved: 2018-03-13T00:00:00Z

Link: CVE-2018-1000112

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2018-03-13T13:29:00.750

Modified: 2019-10-03T00:03:26.223

Link: CVE-2018-1000112

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-02-26T00:00:00Z

Links: CVE-2018-1000112 - Bugzilla