Security Advisory

CVE-2018-1000602

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-06-26 17:00:00

Last updated 2024-09-16 17:38:52

Assigner mitre

State PUBLISHED

Description

A session fixation vulnerability exists in Jenkins SAML Plugin 1.0.6 and earlier in SamlSecurityRealm.java that allows unauthorized attackers to impersonate another users if they can control the pre-authentication session.

← Browse all CVEs View on cve.org ↗