Description
An arbitrary file read vulnerability in Jenkins File System SCM Plugin 2.1 and earlier allows attackers able to configure jobs in Jenkins to obtain the contents of any file on the Jenkins master.
Remediation
References
http://www.openwall.com/lists/oss-security/2019/08/07/1
https://jenkins.io/security/advisory/2019-08-07/#SECURITY-569
Related Vulnerabilities
CVE-2020-28439 Vulnerability in npm package corenlp-js-prefab
CVE-2021-42550 Vulnerability in maven package ch.qos.logback:logback-core
CVE-2022-31103 Vulnerability in npm package lettersanitizer
CVE-2022-35204 Vulnerability in maven package org.webjars.npm:vite
CVE-2021-39235 Vulnerability in maven package org.apache.ozone:ozone-main