exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2017-2606

почти 8 лет назад

Jenkins before versions 2.44, 2.32.2 is vulnerable to an information exposure in the internal API that allows access to item names that should not be visible (SECURITY-380). This only affects anonymous users (other users legitimately have access) that were able to get a list of items via an UnprotectedRootAction.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-2606

около 9 лет назад

Jenkins before versions 2.44, 2.32.2 is vulnerable to an information exposure in the internal API that allows access to item names that should not be visible (SECURITY-380). This only affects anonymous users (other users legitimately have access) that were able to get a list of items via an UnprotectedRootAction.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-2606

почти 8 лет назад

Jenkins before versions 2.44, 2.32.2 is vulnerable to an information exposure in the internal API that allows access to item names that should not be visible (SECURITY-380). This only affects anonymous users (other users legitimately have access) that were able to get a list of items via an UnprotectedRootAction.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-2606

почти 8 лет назад

Jenkins before versions 2.44, 2.32.2 is vulnerable to an information e ...

CVSS3: 4.3

EPSS: Низкий

GHSA-6967-9vvv-4cmm

больше 3 лет назад

Exposure of Sensitive Information to an Unauthorized Actor in Jenkins

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2017-2606 Jenkins before versions 2.44, 2.32.2 is vulnerable to an information exposure in the internal API that allows access to item names that should not be visible (SECURITY-380). This only affects anonymous users (other users legitimately have access) that were able to get a list of items via an UnprotectedRootAction.	CVSS3: 4.3	0% Низкий	почти 8 лет назад
CVE-2017-2606 Jenkins before versions 2.44, 2.32.2 is vulnerable to an information exposure in the internal API that allows access to item names that should not be visible (SECURITY-380). This only affects anonymous users (other users legitimately have access) that were able to get a list of items via an UnprotectedRootAction.	CVSS3: 4.3	0% Низкий	около 9 лет назад
CVE-2017-2606 Jenkins before versions 2.44, 2.32.2 is vulnerable to an information exposure in the internal API that allows access to item names that should not be visible (SECURITY-380). This only affects anonymous users (other users legitimately have access) that were able to get a list of items via an UnprotectedRootAction.	CVSS3: 4.3	0% Низкий	почти 8 лет назад
CVE-2017-2606 Jenkins before versions 2.44, 2.32.2 is vulnerable to an information e ...	CVSS3: 4.3	0% Низкий	почти 8 лет назад
GHSA-6967-9vvv-4cmm Exposure of Sensitive Information to an Unauthorized Actor in Jenkins	CVSS3: 4.3	0% Низкий	больше 3 лет назад

Уязвимостей на страницу