CVE-2020-2103

Summary

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier exposed session identifiers on a user's detail object in the whoAmI diagnostic page.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkinsunspecified <= 2.218affected
Jenkins projectJenkinsunspecified <= LTS 2.204.1affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References