Description
An improper authorization vulnerability exists in Jenkins Subversion Plugin version 2.10.2 and earlier in SubversionStatus.java and SubversionRepositoryStatus.java that allows an attacker with network access to obtain a list of nodes and users.
Remediation
References
https://jenkins.io/security/advisory/2018-02-26/#SECURITY-724
Related Vulnerabilities
CVE-2010-2232 Vulnerability in maven package org.apache.derby:derby
CVE-2019-10083 Vulnerability in maven package org.apache.nifi:nifi-web-api
CVE-2020-6461 Vulnerability in npm package electron
CVE-2023-31125 Vulnerability in npm package engine.io
CVE-2023-24998 Vulnerability in maven package org.apache.tomcat:tomcat-catalina