Upstream information

CVE-2019-16541 at MITRE

Description

Jenkins JIRA Plugin 3.0.10 and earlier does not declare the correct (folder) scope for per-folder Jira site definitions, allowing users to select and use credentials with System scope.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

SUSE Bugzilla entry: 1157522 [RESOLVED / FIXED]

No SUSE Security Announcements cross referenced.