Description
Jenkins 2.218 and earlier, LTS 2.204.1 and earlier used a non-constant time comparison function when validating an HMAC.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress Related Posts Cross-Site Scripting (3.6.4)
WordPress Plugin Quick Chat Cross-Site Scripting (4.14)
WordPress Plugin Nested Pages Multiple Vulnerabilities (3.1.15)
Oracle Database Server CVE-2014-6537 Vulnerability (CVE-2014-6537)
WordPress Plugin Show-Hide/Collapse-Expand Cross-Site Scripting (1.2.5)