CVE-2018-1000420

Publication date

2019-01-09 23:00:00

Family

mitre

State

PUBLISHED

Description

An improper authorization vulnerability exists in Jenkins Mesos Plugin 0.17.1 and earlier in MesosCloud.java that allows attackers with Overall/Read access to obtain credentials IDs for credentials stored in Jenkins.