CVE-2018-1000419

Published: 2019-01-09T23:29Z

Last Modified: 2024-11-21T03:40Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An improper authorization vulnerability exists in Jenkins HipChat Plugin 2.2.0 and earlier in HipChatNotifier.java that allows attackers with Overall/Read access to obtain credentials IDs for credentials stored in Jenkins. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt