logo

CVE-2015-5317 - Jenkins User Interface (UI) Information Disclosure Vulnerability

CVE-2015-5317

Jenkins | Jenkins User Interface (UI)

  • Date Added:
  • 2023-05-12
  • Due Date:
  • 2023-06-02
Vulnerability Name

Jenkins User Interface (UI) Information Disclosure Vulnerability

Description

Jenkins User Interface (UI) contains an information disclosure vulnerability that allows users to see the names of jobs and builds otherwise inaccessible to them on the "Fingerprints" pages.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes
https://www.jenkins.io/security/advisory/2015-11-11/; https://nvd.nist.gov/vuln/detail/CVE-2015-5317

Free online web security scanner