An arbitrary file read vulnerability in Jenkins File System SCM Plugin 2.1 and earlier allows attackers able to configure jobs in Jenkins to obtain the contents of any file on the Jenkins master.
Name | Vendor | Start Version | End Version |
---|---|---|---|
File_system_scm | Jenkins | * | 2.1 (including) |