CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000109

An improper authorization vulnerability exists in Jenkins Google Play Android Publisher Plugin version 1.6 and earlier in GooglePlayBuildStepDescriptor.java that allow an attacker to obtain credential IDs.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.2%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

Products affected by CVE-2018-1000109

Jenkins » Google-Play-Android-Publisher » Version: 1.0

cpe:2.3:a:jenkins:google-play-android-publisher:1.0
Jenkins » Google-Play-Android-Publisher » Version: 1.1

cpe:2.3:a:jenkins:google-play-android-publisher:1.1
Jenkins » Google-Play-Android-Publisher » Version: 1.2

cpe:2.3:a:jenkins:google-play-android-publisher:1.2
Jenkins » Google-Play-Android-Publisher » Version: 1.3

cpe:2.3:a:jenkins:google-play-android-publisher:1.3
Jenkins » Google-Play-Android-Publisher » Version: 1.3.1

cpe:2.3:a:jenkins:google-play-android-publisher:1.3.1
Jenkins » Google-Play-Android-Publisher » Version: 1.4

cpe:2.3:a:jenkins:google-play-android-publisher:1.4
Jenkins » Google-Play-Android-Publisher » Version: 1.4.1

cpe:2.3:a:jenkins:google-play-android-publisher:1.4.1
Jenkins » Google-Play-Android-Publisher » Version: 1.5

cpe:2.3:a:jenkins:google-play-android-publisher:1.5
Jenkins » Google-Play-Android-Publisher » Version: 1.6

cpe:2.3:a:jenkins:google-play-android-publisher:1.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000109

Products

Pricing

Contact Us