CVE-2016-3722

Опубликовано: 11 мая 2016

Источник: redhat

CVSS2: 3.5

EPSS Низкий

Описание

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=1335416jenkins: Malicious users with multiple user accounts can prevent other users from logging in (SECURITY-243)

EPSS

Процентиль: 45%

0.00224

Низкий

3.5 Low

CVSS2

Связанные уязвимости

CVE-2016-3722

CVSS3: 4.3

ubuntu

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."

CVE-2016-3722

CVSS3: 4.3

nvd

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."

CVE-2016-3722

CVSS3: 4.3

debian

больше 9 лет назад

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated u ...

GHSA-3857-xm38-jmq2

CVSS3: 4.3

github

больше 3 лет назад

Incorrect Authorization in Jenkins Core

EPSS

Процентиль: 45%

0.00224

Низкий

3.5 Low

CVSS2