Vulnerability Details CVE-2024-34148
Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier programmatically disables the fix for CVE-2016-3721 whenever a build is triggered from a release tag, by setting the Java system property 'hudson.model.ParametersAction.keepUndefinedParameters'.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.3%
CVSS Severity
CVSS v3 Score 6.8
References
Products affected by CVE-2024-34148
-
cpe:2.3:a:jenkins:subversion_partial_release_manager:-
-
cpe:2.3:a:jenkins:subversion_partial_release_manager:1.0.1