CVE-2015-5324 in Jenkinsinfo

Summary

CloudBees Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

07/01/2015

Disclosure

11/25/2015

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
79325CloudBees Jenkins api access control264Not definedOfficial fixCVE-2015-5324

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!