CVE-2017-2612

Published May 15th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

5.5

MEDIUM

Affected

PROJECT

Description

In Jenkins before versions 2.44, 2.32.2 low privilege users were able to override JDK download credentials (SECURITY-392), resulting in future builds possibly failing to download a JDK.

jenkinsci/jenkins

Jenkins automation server

GitHub

25.3K