Denial of Service Vulnerability in Jenkins CronTab.java

Denial of Service Vulnerability in Jenkins CronTab.java

CVE-2018-1999044 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

A denial of service vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.

Learn more about our Web Application Penetration Testing UK.