Medium severity4.3NVD Advisory· Published May 22, 2018· Updated Jun 17, 2026
CVE-2017-2609
CVE-2017-2609
Description
jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions (SECURITY-385). The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.main:jenkins-coreMaven | < 2.32.2 | 2.32.2 |
org.jenkins-ci.main:jenkins-coreMaven | >= 2.34, < 2.44 | 2.44 |
Affected products
1Patches
Vulnerability mechanics
References
5- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party AdvisoryWEB
- github.com/jenkinsci/jenkins/commit/13905d8224899ba7332fe9af4e330ea96a2ae319nvdPatchThird Party AdvisoryWEB
- www.securityfocus.com/bid/95964nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-v222-w2mw-xjc6ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-2609ghsaADVISORY
News mentions
0No linked articles in our index yet.