CVE-2020-2197

Summary

Jenkins Project Inheritance Plugin 19.08.02 and earlier does not require users to have Job/ExtendedRead permission to access Inheritance Project job configurations in XML format.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Project Inheritance Pluginunspecified <= 19.08.02affected
Jenkins projectJenkins Project Inheritance Pluginnext of 19.08.02 < unspecifiedunknown

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References