Jenkins S3 publisher Plugin 0.11.6 and earlier does not perform Run/Artifacts permission checks in various HTTP endpoints and API models, allowing attackers with Item/Read permission to obtain. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Jenkins
Information Disclosure
S3 Publisher
NVD
CVSS 3.1
4.3
EPSS
0.7%
Microsoft SharePoint Information Disclosure Vulnerability. Rated medium severity (CVSS 4.1).
Microsoft
Information Disclosure
Sharepoint Foundation
Sharepoint Server
NVD
CVSS 3.1
4.1
EPSS
0.7%
Prev
Page 2 of 2