CVE-2020-2300
CVSS v3.1
9.8 (Critical)
CVSS v2.0
7.5 (High)
EPSS
0.24 % (65th)
Affected Products
1
Advisories
2
Jenkins Active Directory Plugin 2.19 and earlier does not prohibit the use of an empty password in Windows/ADSI mode, which allows attackers to log in to Jenkins as any user depending on the configuration of the Active Directory server.
- CVE Status
- PUBLISHED
- CNA
- Jenkins Project
- Published Date
-
2020-11-04 15:15:11
(3 years ago) - Updated Date
-
2023-10-25 18:16:42
(10 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...