CVEs-PoC/2019/CVE-2019-10320.md

CVE-2019-10320

Description

Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containing a PKCS#12 certificate.

POC

Reference

• http://seclists.org/fulldisclosure/2019/May/39

Github

No PoCs found on GitHub currently.