VYPR
Moderate severityNVD Advisory· Published May 2, 2024· Updated Feb 13, 2025

CVE-2024-34146

CVE-2024-34146

Description

Jenkins Git server Plugin 114.v068a_c7cc2574 and earlier does not perform a permission check for read access to a Git repository over SSH, allowing attackers with a previously configured SSH public key but lacking Overall/Read permission to access these repositories.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.jenkins-ci.plugins:git-serverMaven
< 117.veb117.veb

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

1