CVE-2015-1810 in Jenkinsinformation

Résumé (Anglaise)

The HudsonPrivateSecurityRealm class in CloudBees Jenkins before 1.600 and LTS before 1.596.1 does not restrict access to reserved names when using the "Jenkins' own user database" setting, which allows remote attackers to gain privileges by creating a reserved name.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

17/02/2015

Divulgation

16/10/2015

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
78505	CloudBees Jenkins HudsonPrivateSecurityRealm élévation de privilèges	264	Non défini	Correctif officiel	CVE-2015-1810

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Might our Artificial Intelligence support you?

Check our Alexa App!