The doIndex function in hudson/util/RemotingDiagnostics.java in CloudBees Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users with the ADMINISTER permission to obtain sensitive information via vectors related to heapDump.
References
Configurations
History
No history.
Information
Published : 2014-10-17 15:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-2068
Mitre link : CVE-2014-2068
CVE.ORG link : CVE-2014-2068
JSON object : View
Products Affected
jenkins
- jenkins
CWE
CWE-264
Permissions, Privileges, and Access Controls