Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

GSA_kwCzR0hTQS01bWZ3LXA2cXYtd2d2ds4AAmLB

Moderate EPSS: 0.00338% (0.56024 Percentile) EPSS:
Permalink JSON

Arbitrary file read vulnerability in Jenkins Persona Plugin

Affected Packages Affected Versions Fixed Versions
maven:org.jenkins-ci.plugins:persona <= 2.4 No known fixed version

Jenkins Persona Plugin 2.4 and earlier allows users with Overall/Read permission to read arbitrary files on the Jenkins controller.

References:

Identifiers

GHSA-5mfw-p6qv-wgvv

CVE-2020-2293

Risk

Severity

Moderate

EPSS

EPSS Percentage: 0.00338

EPSS Percentile: 0.56024

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Date and time

Published

over 3 years ago

Updated

20 days ago

API

JSON