Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2019-1003018
- EPSS 0.04%
- Published 06.02.2019 16:29:00
- Last modified 21.11.2024 04:17:44
An exposure of sensitive information vulnerability exists in Jenkins GitHub Authentication Plugin 0.29 and earlier in GithubSecurityRealm/config.jelly that allows attackers able to view a Jenkins administrator's web browser output, or control the bro...
5.9
CVE-2019-1003019
- EPSS 0.03%
- Published 06.02.2019 16:29:00
- Last modified 21.11.2024 04:17:45
An session fixation vulnerability exists in Jenkins GitHub Authentication Plugin 0.29 and earlier in GithubSecurityRealm.java that allows unauthorized attackers to impersonate another user if they can control the pre-authentication session.
1