Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2015-7537

Опубликовано: 09 дек. 2015
Источник: redhat
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in Jenkins before 1.640 and LTS before 1.625.2 allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via vectors related to the HTTP GET method.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-352
https://bugzilla.redhat.com/show_bug.cgi?id=1291795jenkins: CSRF vulnerability in some administrative actions (SECURITY-225)

EPSS

Процентиль: 60%
0.00397
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2015-7537

CVSS3: 8.8
ubuntu
около 10 лет назад

Cross-site request forgery (CSRF) vulnerability in Jenkins before 1.640 and LTS before 1.625.2 allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via vectors related to the HTTP GET method.

nvd логотип

CVE-2015-7537

CVSS3: 8.8
nvd
около 10 лет назад

Cross-site request forgery (CSRF) vulnerability in Jenkins before 1.640 and LTS before 1.625.2 allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via vectors related to the HTTP GET method.

debian логотип

CVE-2015-7537

CVSS3: 8.8
debian
около 10 лет назад

Cross-site request forgery (CSRF) vulnerability in Jenkins before 1.64 ...

github логотип

GHSA-3vhr-f5xr-8vpx

CVSS3: 8.8
github
больше 3 лет назад

Jenkins Vulnerable to Cross-Site Request Forgery (CSRF) Attack

EPSS

Процентиль: 60%
0.00397
Низкий

4.3 Medium

CVSS2