CVE-2016-3724

Опубликовано: 17 мая 2016

Источник: debian

EPSS Низкий

Описание

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jenkins	removed			package

Примечания

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2016-05-11

EPSS

Процентиль: 51%

0.00279

Низкий

Связанные уязвимости

CVE-2016-3724

CVSS3: 6.5

ubuntu

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.

CVE-2016-3724

redhat

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.

CVE-2016-3724

CVSS3: 6.5

nvd

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.

GHSA-7vvj-qqvj-h8mc

CVSS3: 6.5

github

больше 3 лет назад

Jenkins Exposes Sensitive Information from Job Configuration

EPSS

Процентиль: 51%

0.00279

Низкий