An exposure of sensitive information vulnerability exists in Jenkins 2.115 and older, LTS 2.107.1 and older, in CLICommand.java and ViewOptionHandler.java that allows unauthorized attackers to confirm the existence of agents or views with an attacker-specified name by sending a CLI command to Jenkins.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-04-13T21:00:00

Updated: 2024-08-05T12:33:49.441Z

Reserved: 2018-04-13T00:00:00

Link: CVE-2018-1000169

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-04-16T09:58:08.977

Modified: 2024-11-21T03:39:50.497

Link: CVE-2018-1000169

cve-icon Redhat

Severity : Low

Publid Date: 2018-04-11T00:00:00Z

Links: CVE-2018-1000169 - Bugzilla