CVE-2020-2275 – Jenkins Copy data to workspace Plugin 1.0 and earlier does not limit which directories can …

Vuln ID: CVE-2020-2275

Published:  2020-09-16  14:15:14Z

Description: Jenkins Copy data to workspace Plugin 1.0 and earlier does not limit which directories can be copied from the Jenkins controller to job workspaces, allowing attackers with Job/Configure permission to read arbitrary files on the Jenkins controller.

Source: NVD.NIST.GOV