CVE-2020-2183: Incorrect Default Permissions

May 6, 2020 (updated May 11, 2020)

Jenkins Copy Artifact Plugin performs improper permission checks, allowing attackers to copy artifacts from jobs they have no permission to access.

References

jenkins.io/security/advisory/2020-05-06/
nvd.nist.gov/vuln/detail/CVE-2020-2183

Code Behaviors & Features

Detect and mitigate CVE-2020-2183 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →