CVE-2024-34148
May 2, 2024, 6 p.m.
Tags
Product(s) Impacted
Jenkins Subversion Partial Release Manager Plugin
- 1.0.1 and earlier
Description
Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier programmatically disables the fix for CVE-2016-3721 whenever a build is triggered from a release tag, by setting the Java system property 'hudson.model.ParametersAction.keepUndefinedParameters'.
Weaknesses
Date
Published: May 2, 2024, 2:15 p.m.
Last Modified: May 2, 2024, 6 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
jenkinsci-cert@googlegroups.com
References
http://www.openwall.com/
jenkinsci-cert@googlegroups.com
https://www.jenkins.io/
jenkinsci-cert@googlegroups.com