CVE-2018-1000148

Published: 2018-04-05T13:29Z

Last Modified: 2024-11-21T03:39Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An exposure of sensitive information vulnerability exists in Jenkins Copy To Slave Plugin version 1.4.4 and older in CopyToSlaveBuildWrapper.java that allows attackers with permission to configure jobs to read arbitrary files from the Jenkins master file system. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt