← Back to CVE List
CVE-2019-10377
Published:
2019-08-07T15:15Z
Last Modified:
2024-11-21T04:19Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
A missing permission check in Jenkins Avatar Plugin 1.2 and earlier allows attackers with Overall/Read access to change the avatar of any user of Jenkins. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt