Vulnerability CVE-2024-43045
Published: 2024-08-07

Description:
Jenkins 2.470 and earlier, LTS 2.452.3 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to access other users' "My Views".

 References:
https://www.jenkins.io/security/advisory/2024-08-07/#SECURITY-3349
Copyright 2026, cxsecurity.com

 

Back to Top