GHSA-3857-xm38-jmq2

Опубликовано: 14 мая 2022

Источник: github

Github: Прошло ревью

CVSS3: 4.3

Описание

Incorrect Authorization in Jenkins Core

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."

Ссылки

Пакеты

Наименование

org.jenkins-ci.main:jenkins-core

maven

Затронутые версииВерсия исправления

< 2.3

2.3

EPSS

Процентиль: 45%

0.00224

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2016-3722

Дефекты

CWE-863

Связанные уязвимости

CVE-2016-3722

CVSS3: 4.3

ubuntu

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."

CVE-2016-3722

redhat

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."

CVE-2016-3722

CVSS3: 4.3

nvd

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."

CVE-2016-3722

CVSS3: 4.3

debian

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated u ...

EPSS

Процентиль: 45%

0.00224

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2016-3722

Дефекты

CWE-863