CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Ssh Credentials >> 0.4 Security Vulnerabilities

CVE-2018-1000601

A arbitrary file read vulnerability exists in Jenkins SSH Credentials Plugin 1.13 and earlier in BasicSSHUserPrivateKey.java that allows attackers with a Jenkins account and the permission to configure credential bindings to read arbitrary files from the Jenkins master file system.

CVSS Score

6.5

EPSS Score

0.003

Published

2018-06-26

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Ssh Credentials >> 0.4 Security Vulnerabilities

Products

Pricing

Contact Us