The optional Run/Artifacts permission can be enabled by setting a Java system property. Blue Ocean did not check this permission before providing access to archived artifacts, Item/Read permission was sufficient.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://jenkins.io/security/advisory/2017-08-07/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-10-04T01:00:00Z
Updated: 2024-09-16T22:01:35.795Z
Reserved: 2017-10-03T00:00:00Z
Link: CVE-2017-1000105
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-10-05T01:29:04.243
Modified: 2024-11-21T03:04:10.410
Link: CVE-2017-1000105
Redhat
No data.