CVE-2024-54004

Published: 2024-11-27T17:15Z

Last Modified: 2024-11-27T19:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Jenkins Filesystem List Parameter Plugin 0.0.14 and earlier does not restrict the path used for the File system objects list Parameter, allowing attackers with Item/Configure permission to enumerate file names on the Jenkins controller file system. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt