August 22, 2018
Vulnerability Notification: Jenkins CI Server getOrCreate Policy Bypass
[Overview] Jenkins is an open source, continuous integration and delivery application based on Java development that runs in a Servlet container. Jenkins allows developers to automate the build process using Apache Ant, Apache Maven, and Shell scripts, allowing developers to focus more on business implementation. [Vulnerability Details] CVE-2018-1999001: The vulnerability is caused by the getOrCreate()…August 6, 2018