CVE-2019-10330

Published: 2019-05-31T15:29Z

Last Modified: 2024-11-21T04:18Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Jenkins Gitea Plugin 1.1.1 and earlier did not implement trusted revisions, allowing attackers without commit access to the Git repo to change Jenkinsfiles even if Jenkins is configured to consider them to be untrusted. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt