Vulnerability Details CVE-2023-40338
Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.3%
CVSS Severity
CVSS v3 Score 4.3
References
Products affected by CVE-2023-40338
-
cpe:2.3:a:jenkins:folders:-
-
cpe:2.3:a:jenkins:folders:6.688.vfc7a_a_69059e0
-
cpe:2.3:a:jenkins:folders:6.708.ve61636eb_65a_5
-
cpe:2.3:a:jenkins:folders:6.714.v79e858ef76a_2
-
cpe:2.3:a:jenkins:folders:6.722.v8165b_a_cf25e9
-
cpe:2.3:a:jenkins:folders:6.729.v2b_9d1a_74d673
-
cpe:2.3:a:jenkins:folders:6.736.v5f554b_b_a_52b_3
-
cpe:2.3:a:jenkins:folders:6.740.ve4f4ffa_dea_54
-
cpe:2.3:a:jenkins:folders:6.758.vfd75d09eea_a_1
-
cpe:2.3:a:jenkins:folders:6.766.v6df9a_0e638ef
-
cpe:2.3:a:jenkins:folders:6.770.ve57b_a_fb_6a_67c
-
cpe:2.3:a:jenkins:folders:6.773.vd2dcc704ee7e
-
cpe:2.3:a:jenkins:folders:6.784.vc60058fa_f269
-
cpe:2.3:a:jenkins:folders:6.792.v495e640810da
-
cpe:2.3:a:jenkins:folders:6.795.v3e23d3c6f194
-
cpe:2.3:a:jenkins:folders:6.797.v8df9950d783b
-
cpe:2.3:a:jenkins:folders:6.800.v71307ca_b_986b
-
cpe:2.3:a:jenkins:folders:6.815.v0dd5a_cb_40e0e
-
cpe:2.3:a:jenkins:folders:6.846.v23698686f0f6