Identifier

CVE-2020-2294

Package Slug

maven/com.barchart.jenkins/maven-release-cascade

Vulnerability

Missing Authorization

Description

Jenkins Maven Cascade Release Plugin does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to start cascade builds and layout builds, and reconfigure the plugin.

Affected Versions

All versions up to 1.3.2

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-10-12

source