CVE-2023-27903

CVE-2023-27903

Jenkins 2.393 and earlier, LTS 2.375.3 and earlier creates a temporary file in the default temporary directory with the default permissions for newly created files when uploading a file parameter through the CLI, potentially allowing attackers with access to the Jenkins controller file system to read and write the file before it is used.

Source: CVE-2023-27903

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다