An improper authorization vulnerability exists in Jenkins Promoted Builds Plugin 2.31.1 and earlier in Status.java and ManualCondition.java that allow an attacker with read access to jobs to perform promotions.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-03-13T13:00:00Z

Updated: 2024-09-16T23:16:12.603Z

Reserved: 2018-03-13T00:00:00Z

Link: CVE-2018-1000114

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-03-13T13:29:00.843

Modified: 2024-11-21T03:39:40.520

Link: CVE-2018-1000114

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-02-26T00:00:00Z

Links: CVE-2018-1000114 - Bugzilla