Security Advisory

CVE-2018-1999043

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-08-23 18:00:00

Last updated 2024-09-16 18:03:50

Assigner mitre

State PUBLISHED

Description

A denial of service vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in BasicAuthenticationFilter.java, BasicHeaderApiTokenAuthenticator.java that allows attackers to create ephemeral in-memory user records by attempting to log in using invalid credentials.

← Browse all CVEs View on cve.org ↗