CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Jenkins >> 2.1 Security Vulnerabilities

CVE-2016-3723

Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with read access to obtain sensitive plugin installation information by leveraging missing permissions checks in unspecified XML/JSON API endpoints.

CVSS Score

4.3

EPSS Score

0.0

Published

2016-05-17

CVE-2016-3721

Jenkins before 2.3 and LTS before 1.651.2 might allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables.

CVSS Score

6.5

EPSS Score

0.002

Published

2016-05-17

Page 18

Vulnerabilities

Vulnerable Software

Jenkins: >> Jenkins >> 2.1 Security Vulnerabilities

Products

Pricing

Contact Us