CVEDB API

Vulnerabilities

Vulnerable Software

Jenkins: >> Jenkins >> 1.600 Security Vulnerabilities

CVE-2015-5317

Known exploited

The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.

CVSS Score

7.5

EPSS Score

0.274

Published

2015-11-25

CVE-2015-1814

The API token-issuing service in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to gain privileges via a "forced API token change" involving anonymous users.

CVSS Score

7.5

EPSS Score

0.002

Published

2015-10-16

CVE-2015-1813

Cross-site scripting (XSS) vulnerability in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-1812.

CVSS Score

4.3

EPSS Score

0.002

Published

2015-10-16

CVE-2015-1812

CVSS Score

4.3

EPSS Score

0.002

Published

2015-10-16

Page 21

Vulnerabilities

Vulnerable Software

Jenkins: >> Jenkins >> 1.600 Security Vulnerabilities

Products

Pricing

Contact Us