VYPR
High severityNVD Advisory· Published Oct 8, 2020· Updated Aug 4, 2024

CVE-2020-2286

CVE-2020-2286

Description

Jenkins Role-based Authorization Strategy Plugin 3.0 and earlier does not properly invalidate a permission cache when the configuration is changed, resulting in permissions being granted based on an outdated configuration.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.jenkins-ci.plugins:role-strategyMaven
>= 2.12, < 3.13.1

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

1