Lucene search
GoogleOSV:GHSA-98M4-M2C3-QXGQHistoryMay 24, 2022 - 5:01 p.m.
Jenkins JIRA Plugin allows users to select and use credentials with System scope
2022-05-2417:01:40
Google
osv.dev
12
jenkins
jira
plugin
credentials
scope
issue
EPSS
0.001
Percentile
42.8%
Jenkins JIRA Plugin 3.0.10 and earlier does not declare the correct (folder) scope for per-folder Jira site definitions, allowing users to select and use credentials with System scope. Jira Plugin 3.0.11 defines the appropriate folder context for credential lookup. As a side effect, existing per-folder Jira sites may lose access to already configured System-scoped credentials, as if no credential was specified in the first place.
Related
prion
prion
Design/Logic Flaw
2019-11-21 15:15:00
redhatcve
redhatcve
CVE-2019-16541
2020-04-01 10:02:04
nvd
nvd
CVE-2019-16541
2019-11-21 15:15:14
osv
osv
CVE-2019-16541
2019-11-21 15:15:14
veracode
veracode
Information Disclosure
2020-08-28 02:13:11
cve
cve
CVE-2019-16541
2019-11-21 15:15:14
alpinelinux
alpinelinux
CVE-2019-16541
2019-11-21 15:15:14
cvelist
cvelist
CVE-2019-16541
2019-11-21 14:11:21
github
github
redhat
redhat
nessus
nessus
RHEL 7 / 8 : OpenShift Container Platform 4.6.1 (RHSA-2020:4297)
2020-10-28 00:00:00
RHEL 7 : OpenShift Container Platform 3.11 (RHSA-2020:3541)
2020-08-27 00:00:00