Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jenkins

Published: 2023-08-16T14:32:50.674Z

Updated: 2024-08-02T18:31:53.633Z

Reserved: 2023-08-14T16:02:56.435Z

Link: CVE-2023-40338

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-08-16T15:15:11.483

Modified: 2024-11-21T08:19:14.950

Link: CVE-2023-40338

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-08-16T00:00:00Z

Links: CVE-2023-40338 - Bugzilla