Lucene search
PRIOn knowledge basePRION:CVE-2015-5319HistoryNov 25, 2015 - 8:59 p.m.
Xxe
2015-11-2520:59:00
PRIOn knowledge base
www.prio-n.com
9
7 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.6%
XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an “XML-aware tool,” as demonstrated by get-job and update-job.
Related
ubuntucve
ubuntucve
CVE-2015-5319
2015-11-25 00:00:00
cve
cve
CVE-2015-5319
2015-11-25 20:59:00
nessus
nessus
Fedora 22 : jenkins-1.609.3-4.fc22 (2015-89468612f5)
2016-03-04 00:00:00
Fedora 23 : jenkins-1.625.2-2.fc23 / jenkins-remoting-2.53-1.fc23 (2015-d02feebd15)
2016-03-04 00:00:00
RHEL 6 : Red Hat OpenShift Enterprise 2.2.9 (RHSA-2016:0489)
2018-12-04 00:00:00
openvas
openvas
Fedora Update for jenkins FEDORA-2015-89468612
2015-12-23 00:00:00
Jenkins CLI Multiple Vulnerabilities
2015-11-17 00:00:00
Jenkins Multiple Vulnerabilities (Nov 2015) - Linux
2016-08-05 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: jenkins-1.609.3-4.fc22
2015-12-22 07:27:11
[SECURITY] Fedora 23 Update: jenkins-remoting-2.53-1.fc23
2015-11-23 00:30:04
[SECURITY] Fedora 23 Update: jenkins-1.625.2-2.fc23
2015-11-23 00:30:04
archlinux
archlinux
jenkins: multiple issues
2015-11-18 00:00:00
redhat
redhat
veracode
veracode
Privilege Escalation
2019-05-02 05:21:27
Improper Access Control
2019-05-02 05:21:30
Sensitive Information Disclosure
2019-05-02 05:21:24
7 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.6%
Related for PRION:CVE-2015-5319