Description
Jenkins 2.318 and earlier, LTS 2.303.2 and earlier allows any agent to read and write the contents of any build directory stored in Jenkins with very few restrictions.
Remediation
References
Related Vulnerabilities
Apache Tomcat Improper Authorization Vulnerability (CVE-2026-43515)
WordPress Plugin Payment Gateways Caller for WP e-Commerce Local File Inclusion (0.1)
PostgreSQL Other Vulnerability (CVE-2003-0901)
WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.7.0)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-5000)