CVE-2015-5317

Опубликовано: 25 нояб. 2015

Источник: debian

Описание

The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jenkins	removed			package

Примечания

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11

Связанные уязвимости

CVE-2015-5317

CVSS3: 7.5

ubuntu

около 10 лет назад

The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.

CVE-2015-5317

redhat

около 10 лет назад

The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.

CVE-2015-5317

CVSS3: 7.5

nvd

около 10 лет назад

The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.

GHSA-8pqx-3rxx-f5pm

CVSS3: 7.5

github

больше 3 лет назад

Jenkins discloses project names via fingerprints