CVE-2016-0789 in Jenkinsinformação

Sumário

de MITRE

CRLF injection vulnerability in the CLI command documentation in CloudBees Jenkins before 1.650 and LTS before 1.642.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

16/12/2015

Divulgação

07/04/2016

Moderação

aceite

Entrada

VDB-81698

CPE

pronto

CWE

CWE-20 (confirmado)

CVSS

6.1 (NVD)

EPSS

0.01790

KEV

não

Atividades

muito baixo

Sector

Hostingprovider, Chemical, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0789
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0789
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0789/

◂ Voltar Visão Geral Próximo ▸

Do you need the next level of professionalism?

Upgrade your account now!