CVE-2017-2604

Summary

In Jenkins before versions 2.44, 2.32.2 low privilege users were able to act on administrative monitors due to them not being consistently protected by permission checks (SECURITY-371).

Affected Software

VendorProductVersion RangeStatus
[UNKNOWN]jenkinsjenkins 2.44affected
[UNKNOWN]jenkinsjenkins 2.32.2affected

Weaknesses

  • CWE-358: CWE-358

ADP Enrichment

CVE Program Container

Additional References

References