Description
A denial of service vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.
Remediation
References
https://jenkins.io/security/advisory/2018-08-15/#SECURITY-790
Related Vulnerabilities
CVE-2019-10076 Vulnerability in maven package org.apache.jspwiki:jspwiki-war
CVE-2015-5255 Vulnerability in maven package org.apache.flex.blazeds:flex-messaging-core
CVE-2019-0205 Vulnerability in maven package org.apache.thrift:libthrift
CVE-2022-43415 Vulnerability in maven package org.jenkins-ci.plugins:repo
CVE-2014-3416 Vulnerability in maven package org.jasig.portal:uportal-war