Skip to main content

Pluggable Authentication Module

1 CVEs product

Monthly

CVE-2019-10319 MEDIUM This Month

A missing permission check in Jenkins PAM Authentication Plugin 1.5 and earlier, except 1.4.1 in PamSecurityRealm.DescriptorImpl#doTest allowed users with Overall/Read permission to obtain limited. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Jenkins Pluggable Authentication Module
NVD
CVSS 3.1
4.3
EPSS
0.8%
EPSS 1% CVSS 4.3
MEDIUM This Month

A missing permission check in Jenkins PAM Authentication Plugin 1.5 and earlier, except 1.4.1 in PamSecurityRealm.DescriptorImpl#doTest allowed users with Overall/Read permission to obtain limited. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Jenkins Pluggable Authentication Module
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy