CVE-2017-2609: Information Exposure
(updated )
Jenkins is vulnerable to an information disclosure vulnerability in search suggestions. The autocomplete
feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to.
References
Detect and mitigate CVE-2017-2609 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →