Описание
The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 1.638, 1.625.2 |
| vivid | DNE | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE |
Показывать по
10
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
redhat
около 10 лет назад
The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.
CVSS3: 7.5
nvd
около 10 лет назад
The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.
CVSS3: 7.5
debian
около 10 лет назад
The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 ...
CVSS3: 7.5
github
больше 3 лет назад
Jenkins discloses project names via fingerprints
5 Medium
CVSS2
7.5 High
CVSS3