Description
Jenkins Kubernetes Plugin 1.27.3 and earlier allows low-privilege users to access possibly sensitive Jenkins controller environment variables.
Remediation
References
https://www.jenkins.io/security/advisory/2020-11-04/#SECURITY-1646
Related Vulnerabilities
CVE-2023-32689 Vulnerability in npm package parse-server
CVE-2011-2092 Vulnerability in maven package com.adobe.blazeds:blazeds-core
CVE-2021-22060 Vulnerability in maven package org.springframework:spring-core
CVE-2017-8046 Vulnerability in maven package org.springframework.boot:spring-boot-starter-data-rest
CVE-2013-2187 Vulnerability in maven package org.apache.archiva:archiva