CVE-2015-5317 - Jenkins User Interface (UI) Information Disclosure Vulnerability
Project:Jenkins
Product:Jenkins User Interface (UI)
Date Added:2023-05-12Due Date:2023-06-02
Vulnerability Name
Jenkins User Interface (UI) Information Disclosure Vulnerability
Description
Jenkins User Interface (UI) contains an information disclosure vulnerability that allows users to see the names of jobs and builds otherwise inaccessible to them on the "Fingerprints" pages.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://www.jenkins.io/security/advisory/2015-11-11/
https://nvd.nist.gov/vuln/detail/CVE-2015-5317