CVE-2019-10382
Improper Certificate Validation in maven/org.jenkins-ci.plugins/labmanager
Identifiers
GHSA-jxg7-cghf-mggx, CVE-2019-10382
Package Slug
maven/org.jenkins-ci.plugins/labmanager
Vulnerability
Improper Certificate Validation
Description
Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM.
Affected Versions
All versions up to 0.2.8
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-03-06
| source |