CVE-2019-10365

Summary

Jenkins Google Kubernetes Engine Plugin 0.6.2 and earlier created a temporary file containing a temporary access token in the project workspace, where it could be accessed by users with Job/Read permission.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Google Kubernetes Engine Plugin0.6.2 and earlieraffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References