Vulnerability Details CVE-2019-10375
An arbitrary file read vulnerability in Jenkins File System SCM Plugin 2.1 and earlier allows attackers able to configure jobs in Jenkins to obtain the contents of any file on the Jenkins master.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 59.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2019-10375
-
cpe:2.3:a:jenkins:file_system_scm:-
-
cpe:2.3:a:jenkins:file_system_scm:0.1
-
cpe:2.3:a:jenkins:file_system_scm:1.10
-
cpe:2.3:a:jenkins:file_system_scm:1.20
-
cpe:2.3:a:jenkins:file_system_scm:1.21
-
cpe:2.3:a:jenkins:file_system_scm:1.5
-
cpe:2.3:a:jenkins:file_system_scm:1.6
-
cpe:2.3:a:jenkins:file_system_scm:1.7
-
cpe:2.3:a:jenkins:file_system_scm:1.8
-
cpe:2.3:a:jenkins:file_system_scm:1.9
-
cpe:2.3:a:jenkins:file_system_scm:2.0
-
cpe:2.3:a:jenkins:file_system_scm:2.1