CVE-2019-1003091

GHSA-fhgg-j92h-29rc, CVE-2019-1003091

maven/com.soasta.jenkins/cloudtest

Missing Authorization

A missing permission check in Jenkins SOASTA CloudTest Plugin in the CloudTestServer.DescriptorImpl#doValidate form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.

All versions up to 2.25

Unfortunately, there is no solution available yet.

2024-01-31