A missing permission check in Jenkins Kubernetes Plugin 1.27.3 and earlier allows attackers with Overall/Read permission to list global pod template names.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Kubernetes |
Jenkins |
* |
1.27.3 (including) |
References