Moderate severityNVD Advisory· Published Apr 4, 2019· Updated Aug 4, 2024
CVE-2019-10293
CVE-2019-10293
Description
A missing permission check in Jenkins Kmap Plugin in KmapJenkinsBuilder.DescriptorImpl form validation methods allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: all versions as of 2019-04-03
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-q5wm-qgxj-h9phghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-10293ghsaADVISORY
- www.openwall.com/lists/oss-security/2019/04/12/2ghsamailing-listx_refsource_MLISTWEB
- www.securityfocus.com/bid/107790ghsavdb-entryx_refsource_BIDWEB
- jenkins.io/security/advisory/2019-04-03/ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.