CVE-2015-1810
CVE-2015-1810 affects Jenkins/CloudBees Jenkins CI prior to 1.600 and LTS prior to 1.596.1. The HudsonPrivateSecurityRealm class does not restrict access to reserved names when using the Jenkins’ own user database, enabling a remote attacker to gain privileges by creating a reserved name. The iss...