CVE-2017-1000087
- Source
- https://cve.org/CVERecord?id=CVE-2017-1000087
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000087.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-1000087
- Aliases
- Published
- 2017-10-05T01:29:03.603Z
- Modified
- 2026-03-14T09:21:17.544749Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
GitHub Branch Source provides a list of applicable credential IDs to allow users configuring a job to select the one they'd like to use. This functionality did not check permissions, allowing any user with Overall/Read permission to get a list of valid credentials IDs. Those could be used as part of an attack to capture the credentials using another vulnerability.
- References
Affected packages
Git / github.com/jenkinsci/github-branch-source-plugin
Affected ranges
- Type
- GIT
- Repo
- https://github.com/jenkinsci/github-branch-source-plugin
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "2.0.7" }, { "introduced": "0" }, { "last_affected": "0.1-beta\\-1" }, { "introduced": "0" }, { "last_affected": "0.1-beta\\-2" }, { "introduced": "0" }, { "last_affected": "0.1-beta\\-3" }, { "introduced": "0" }, { "last_affected": "0.1-beta\\-4" }, { "introduced": "0" }, { "last_affected": "1.0" }, { "introduced": "0" }, { "last_affected": "1.1" }, { "introduced": "0" }, { "last_affected": "1.2" }, { "introduced": "0" }, { "last_affected": "1.3" }, { "introduced": "0" }, { "last_affected": "1.4" }, { "introduced": "0" }, { "last_affected": "1.4-beta\\-1" }, { "introduced": "0" }, { "last_affected": "1.5" }, { "introduced": "0" }, { "last_affected": "1.6" }, { "introduced": "0" }, { "last_affected": "1.7" }, { "introduced": "0" }, { "last_affected": "1.8" }, { "introduced": "0" }, { "last_affected": "1.8.1" }, { "introduced": "0" }, { "last_affected": "1.9" }, { "introduced": "0" }, { "last_affected": "1.10" }, { "introduced": "0" }, { "last_affected": "2.0.0" }, { "introduced": "0" }, { "last_affected": "2.0.0-beta\\-1" }, { "introduced": "0" }, { "last_affected": "2.0.0-beta\\-2" }, { "introduced": "0" }, { "last_affected": "2.0.1" }, { "introduced": "0" }, { "last_affected": "2.0.1-beta\\-1" }, { "introduced": "0" }, { "last_affected": "2.0.1-beta\\-2" }, { "introduced": "0" }, { "last_affected": "2.0.1-beta\\-3" }, { "introduced": "0" }, { "last_affected": "2.0.1-beta\\-4" }, { "introduced": "0" }, { "last_affected": "2.0.1-beta\\-5" }, { "introduced": "0" }, { "last_affected": "2.0.1-beta\\-6" }, { "introduced": "0" }, { "last_affected": "2.0.2" }, { "introduced": "0" }, { "last_affected": "2.0.3" }, { "introduced": "0" }, { "last_affected": "2.0.4" }, { "introduced": "0" }, { "last_affected": "2.0.4-beta\\-1" }, { "introduced": "0" }, { "last_affected": "2.0.5" }, { "introduced": "0" }, { "last_affected": "2.0.6" }, { "introduced": "0" }, { "last_affected": "2.2.0" }, { "introduced": "0" }, { "last_affected": "2.2.0-alpha\\-1" }, { "introduced": "0" }, { "last_affected": "2.2.0-alpha\\-2" }, { "introduced": "0" }, { "last_affected": "2.2.0-alpha\\-3" }, { "introduced": "0" }, { "last_affected": "2.2.0-alpha\\-4" }, { "introduced": "0" }, { "last_affected": "2.2.0-beta\\-1" } ] }
Affected versions
github-branch-source-0.*
github-branch-source-0.1-beta-1
github-branch-source-0.1-beta-2
github-branch-source-0.1-beta-3
github-branch-source-0.1-beta-4
github-branch-source-1.*
github-branch-source-1.0
github-branch-source-1.1
github-branch-source-1.10
github-branch-source-1.2
github-branch-source-1.3
github-branch-source-1.4
github-branch-source-1.4-beta-1
github-branch-source-1.5
github-branch-source-1.6
github-branch-source-1.7
github-branch-source-1.8
github-branch-source-1.8.1
github-branch-source-1.9
github-branch-source-2.*
github-branch-source-2.0.0
github-branch-source-2.0.0-beta-1
github-branch-source-2.0.0-beta-2
github-branch-source-2.0.1
github-branch-source-2.0.1-beta-1
github-branch-source-2.0.1-beta-2
github-branch-source-2.0.1-beta-3
github-branch-source-2.0.1-beta-4
github-branch-source-2.0.1-beta-5
github-branch-source-2.0.1-beta-6
github-branch-source-2.0.2
github-branch-source-2.0.3
github-branch-source-2.0.4
github-branch-source-2.0.4-beta-1
github-branch-source-2.0.5
github-branch-source-2.0.6
github-branch-source-2.0.7