CVE

CVE-2017-2613

CVE-2017-2613

jenkins before versions 2.44, 2.32.2 is vulnerable to a user creation CSRF using GET by admins. While this user record was only retained until restart in most cases, administrators’ web browsers could be manipulated to create a large number of user records (SECURITY-406).

Source: CVE-2017-2613

Exit mobile version