Lucene search
+L

5 matches found

UbuntuCve
UbuntuCve
added 2018/01/26 2:29 a.m.30 views

CVE-2017-1000395

Jenkins 2.73.1 and earlier, 2.83 and earlier provides information about Jenkins user accounts which is generally available to anyone with Overall/Read permissions via the /user/username/api remote API. This included e.g. Jenkins users' email addresses if the Mailer Plugin is installed. The remote...

4.3CVSS6.3AI score0.0131EPSS
Exploits0References2
NVD
NVD
added 2018/01/26 2:29 a.m.21 views

CVE-2017-1000395

Jenkins 2.73.1 and earlier, 2.83 and earlier provides information about Jenkins user accounts which is generally available to anyone with Overall/Read permissions via the /user/username/api remote API. This included e.g. Jenkins users' email addresses if the Mailer Plugin is installed. The remote...

4.3CVSS4.8AI score0.0131EPSS
Exploits0References1
CVE
CVE
added 2018/01/26 2:0 a.m.98 views

CVE-2017-1000395

CVE-2017-1000395 affects Jenkins Core (2.73.1 and earlier, 2.83 and earlier). The remote /user/(username)/api API disclosed user-account details (e.g., emails via Mailer Plugin) to non-admins; the API now only returns basic info (userID and name) unless the requester is an administrator. This is ...

4.3CVSS4.6AI score0.0131EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2017/11/21 11:20 a.m.27 views

CVE-2017-1000395

Jenkins 2.73.1 and earlier, 2.83 and earlier provides information about Jenkins user accounts which is generally available to anyone with Overall/Read permissions via the /user/username/api remote API. This included e.g. Jenkins users' email addresses if the Mailer Plugin is installed. The remote...

4.3CVSS3.7AI score0.0131EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/11/07 12:0 a.m.29 views

Jenkins Multiple Vulnerabilities (Oct 2017) - Linux

Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins"; ifdescription...

9CVSS6AI score0.05844EPSS
Exploits0References1
Rows per page
Query Builder