Description
A data modification vulnerability exists in Jenkins Resource Disposer Plugin 0.11 and earlier in AsyncResourceDisposer.java that allows attackers to stop tracking a resource.
Remediation
References
https://jenkins.io/security/advisory/2018-07-30/#SECURITY-997
Related Vulnerabilities
CVE-2022-41226 Vulnerability in maven package com.compuware.jenkins:compuware-common-configuration
CVE-2023-22899 Vulnerability in maven package net.lingala.zip4j:zip4j
CVE-2023-49803 Vulnerability in npm package @koa/cors
CVE-2022-36060 Vulnerability in npm package matrix-react-sdk
CVE-2019-17573 Vulnerability in maven package org.apache.cxf:cxf-rt-transports-http