Описание
Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 1.638, 1.625.2 |
| vivid | DNE | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE |
Показывать по
10
EPSS
Процентиль: 51%
0.00284
Низкий
5 Medium
CVSS2
Связанные уязвимости
redhat
около 10 лет назад
Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api.
nvd
около 10 лет назад
Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api.
debian
около 10 лет назад
Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to ...
github
больше 3 лет назад
Jenkins allows Unauthorized Viewing of Queue API Information
EPSS
Процентиль: 51%
0.00284
Низкий
5 Medium
CVSS2