Lucene search
HistoryMar 01, 2014 - 12:01 a.m.
CVE-2014-2059
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
72.7%
Directory traversal vulnerability in the CLI job creation (hudson/cli/CreateJobCommand.java) in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to overwrite arbitrary files via the job name.
Affected configurations
Node
jenkinsjenkinsRange≤1.532.1lts
Node
jenkinsjenkinsRange≤1.550
Related
cvelist
cvelist
CVE-2014-2059
2014-02-28 17:00:00
cve
cve
CVE-2014-2059
2014-03-01 00:01:09
prion
prion
Directory traversal
2014-03-01 00:01:00
github
github
Jenkins directory traversal vulnerability
2022-05-17 01:26:47
ubuntucve
ubuntucve
CVE-2014-2059
2014-03-01 00:00:00
osv
osv
Jenkins directory traversal vulnerability
2022-05-17 01:26:47
veracode
veracode
Directory Traversal
2019-05-02 04:55:59
openvas
openvas
Jenkins < 1.551, < 1.532.2 LTS Multiple Vulnerabilities - Windows
2022-09-01 00:00:00
Jenkins < 1.551, < 1.532.2 LTS Multiple Vulnerabilities - Linux
2022-09-01 00:00:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
72.7%
Related for NVD:CVE-2014-2059