Security Advisory

CVE-2018-1000194

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-06-05 21:00:00

Last updated 2024-08-05 12:40:47

Assigner mitre

State PUBLISHED

Description

A path traversal vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in FilePath.java, SoloFilePathFilter.java that allows malicious agents to read and write arbitrary files on the Jenkins master, bypassing the agent-to-master security subsystem protection.

← Browse all CVEs View on cve.org ↗