CVE-2018-1000068: Improper Input Validation
(updated )
An improper input validation vulnerability in Jenkins allows an attacker to access plugin resource files in the META-INF
and WEB-INF
directories that should not be accessible, if the Jenkins home directory is on a case-insensitive file system.
References
Detect and mitigate CVE-2018-1000068 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →