Lucene search

K
ubuntucveUbuntu.comUB:CVE-2015-1806
HistoryOct 16, 2015 - 12:00 a.m.

CVE-2015-1806

2015-10-1600:00:00
ubuntu.com
ubuntu.com
12

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

77.2%

The combination filter Groovy script in Jenkins before 1.600 and LTS before
1.596.1 allows remote authenticated users with job configuration permission
to gain privileges and execute arbitrary code on the master via unspecified
vectors.

Bugs

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

77.2%