Jenkins Email Extension Plugin CVE-2018-1000176 Information Disclosure Vulnerability

Bugtraq ID:	104226
Class:	Input Validation Error
CVE:	CVE-2018-1000176
Remote:	Yes
Local:	Yes
Published:	Apr 16 2018 12:00AM
Updated:	Apr 16 2018 12:00AM
Credit:	Matthias Nodeland
Vulnerable:	Jenkins-Ci Email Extension Plugin 2.61
Not Vulnerable:	Jenkins-Ci Email Extension Plugin 2.62

Jenkins Email Extension Plugin CVE-2018-1000176 Information Disclosure Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Jenkins Email Extension Plugin CVE-2018-1000176 Information Disclosure Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Jenkins Email Extension Plugin CVE-2018-1000176 Information Disclosure Vulnerability

References:

• Jenkins CI Homepage (Jenkins CI)
  
• Jenkins Security Advisory 2018-04-16 (Jenkins CI)