CVE-2018-1000602

Published: 2018-06-26T17:29Z

Last Modified: 2024-11-21T03:40Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A session fixation vulnerability exists in Jenkins SAML Plugin 1.0.6 and earlier in SamlSecurityRealm.java that allows unauthorized attackers to impersonate another users if they can control the pre-authentication session. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt