Jenkins before 2.3 and LTS before 1.651.2 might allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Openshift | Redhat | 3.1 | 3.1 |
Openshift | Redhat | 3.2 | 3.2 |