CVE-2020-2260 – A missing permission check in Jenkins Perfecto Plugin 1.17 and earlier allows attackers wi …

Vuln ID: CVE-2020-2260

Published:  2020-09-16  14:15:13Z

Description: A missing permission check in Jenkins Perfecto Plugin 1.17 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP URL using attacker-specified credentials.

Source: NVD.NIST.GOV