CVE-2020-2310

Summary

Missing permission checks in Jenkins Ansible Plugin 1.0 and earlier allow attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Ansible Pluginunspecified <= 1.0affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References