Launch Week Day 1: Announcing Security Design Review

Jenkins allows attackers to configure restricted projects

GHSA-h5jv-hg68-mjhg · CVE-2013-7330

Published May 17, 2022 · Modified Dec 4, 2024

Description

Jenkins before 1.502 allows remote authenticated users to configure an otherwise restricted project via vectors related to post-build actions.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes