Jenkins - Avatar CVE - CVE Search - CVE Details

Filtered by vendor Jenkins Subscribe

Filtered by product Avatar

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-10377	1 Jenkins	1 Avatar	2020-10-01	4.0 MEDIUM	4.3 MEDIUM
A missing permission check in Jenkins Avatar Plugin 1.2 and earlier allows attackers with Overall/Read access to change the avatar of any user of Jenkins.

Vulnerabilities (CVE)