Denial of Service Vulnerability in Jenkins CronTab.java

Denial of Service Vulnerability in Jenkins CronTab.java

CVE-2018-1000864 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.

Learn more about our Web Application Penetration Testing UK.