Описание
Jenkins Cross-Site Request Forgery vulnerability
Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to bypass the CSRF protection mechanism via unknown attack vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-0329
- https://access.redhat.com/errata/RHSA-2013:0638
- https://access.redhat.com/security/cve/CVE-2013-0329
- https://bugzilla.redhat.com/show_bug.cgi?id=914877
- https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-02-16
- http://rhn.redhat.com/errata/RHSA-2013-0638.html
- http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-02-16.cb
- http://www.openwall.com/lists/oss-security/2013/02/21/7
Пакеты
org.jenkins-ci.main:jenkins-core
>= 1.481, < 1.502
1.502
org.jenkins-ci.main:jenkins-core
< 1.480.3
1.480.3
Связанные уязвимости
Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to bypass the CSRF protection mechanism via unknown attack vectors.
Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to bypass the CSRF protection mechanism via unknown attack vectors.
Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to bypass the CSRF protection mechanism via unknown attack vectors.
Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480 ...