exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2015-5319

около 10 лет назад

XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job.

CVSS2: 5

EPSS: Низкий

CVE-2015-5319

около 10 лет назад

XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job.

CVSS2: 2.6

EPSS: Низкий

CVE-2015-5319

около 10 лет назад

XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job.

CVSS2: 5

EPSS: Низкий

CVE-2015-5319

около 10 лет назад

XML external entity (XXE) vulnerability in the create-job CLI command ...

CVSS2: 5

EPSS: Низкий

GHSA-3j9c-cp7m-8w8g

больше 3 лет назад

Jenkins has XML External Entity (XXE) Vulnerability in Job Configuration via CLI

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2015-5319 XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job.	CVSS2: 5	0% Низкий	около 10 лет назад
CVE-2015-5319 XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job.	CVSS2: 2.6	0% Низкий	около 10 лет назад
CVE-2015-5319 XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job.	CVSS2: 5	0% Низкий	около 10 лет назад
CVE-2015-5319 XML external entity (XXE) vulnerability in the create-job CLI command ...	CVSS2: 5	0% Низкий	около 10 лет назад
GHSA-3j9c-cp7m-8w8g Jenkins has XML External Entity (XXE) Vulnerability in Job Configuration via CLI		0% Низкий	больше 3 лет назад

Уязвимостей на страницу