Vulnerability Details CVE-2019-10375
An arbitrary file read vulnerability in Jenkins File System SCM Plugin 2.1 and earlier allows attackers able to configure jobs in Jenkins to obtain the contents of any file on the Jenkins master.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.2%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
Products affected by CVE-2019-10375
-
cpe:2.3:a:jenkins:file_system_scm:-
-
cpe:2.3:a:jenkins:file_system_scm:0.1
-
cpe:2.3:a:jenkins:file_system_scm:1.10
-
cpe:2.3:a:jenkins:file_system_scm:1.20
-
cpe:2.3:a:jenkins:file_system_scm:1.21
-
cpe:2.3:a:jenkins:file_system_scm:1.5
-
cpe:2.3:a:jenkins:file_system_scm:1.6
-
cpe:2.3:a:jenkins:file_system_scm:1.7
-
cpe:2.3:a:jenkins:file_system_scm:1.8
-
cpe:2.3:a:jenkins:file_system_scm:1.9
-
cpe:2.3:a:jenkins:file_system_scm:2.0
-
cpe:2.3:a:jenkins:file_system_scm:2.1