CVE-2014-2066

Опубликовано: 17 окт. 2014

Источник: debian

EPSS Низкий

Описание

Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jenkins	fixed	1.565.2-1		package

Примечания

https://github.com/jenkinsci/jenkins/commit/8ac74c350779921598f9d5edfed39dd35de8842a

EPSS

Процентиль: 34%

0.00138

Низкий

Связанные уязвимости

CVE-2014-2066

ubuntu

больше 11 лет назад

Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies.

CVE-2014-2066

redhat

почти 12 лет назад

Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies.

CVE-2014-2066

nvd

больше 11 лет назад

Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies.

GHSA-8jfx-h6q2-v4g3

github

больше 3 лет назад

Jenkins session fixation vulnerability

EPSS

Процентиль: 34%

0.00138

Низкий