Security Advisory

CVE-2019-10308

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-30 12:25:17

Last updated 2024-08-04 22:17:20

Assigner jenkins

State PUBLISHED

Description

A missing permission check in Jenkins Static Analysis Utilities Plugin 1.95 and earlier in the DefaultGraphConfigurationView#doSave form handler method allowed attackers with Overall/Read permission to change the per-job default graph configuration for all users.

← Browse all CVEs View on cve.org ↗