Lucene search
Ubuntu.comUB:CVE-2015-5323HistoryNov 25, 2015 - 12:00 a.m.
CVE-2015-5323
2015-11-2500:00:00
ubuntu.com
ubuntu.com
7
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
56.8%
Jenkins before 1.638 and LTS before 1.625.2 do not properly restrict access
to API tokens which might allow remote administrators to gain privileges
and run scripts by using an API token of another user.
Related
prion
prion
Design/Logic Flaw
2015-11-25 20:59:00
nvd
nvd
CVE-2015-5323
2015-11-25 20:59:14
cve
cve
CVE-2015-5323
2015-11-25 20:59:14
cvelist
cvelist
CVE-2015-5323
2015-11-25 20:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: jenkins-1.609.3-4.fc22
2015-12-22 07:27:11
[SECURITY] Fedora 23 Update: jenkins-remoting-2.53-1.fc23
2015-11-23 00:30:04
[SECURITY] Fedora 23 Update: jenkins-1.625.2-2.fc23
2015-11-23 00:30:04
nessus
nessus
Fedora 22 : jenkins-1.609.3-4.fc22 (2015-89468612f5)
2016-03-04 00:00:00
Fedora 23 : jenkins-1.625.2-2.fc23 / jenkins-remoting-2.53-1.fc23 (2015-d02feebd15)
2016-03-04 00:00:00
RHEL 6 : Red Hat OpenShift Enterprise 2.2.9 (RHSA-2016:0489)
2018-12-04 00:00:00
openvas
openvas
Fedora Update for jenkins FEDORA-2015-89468612
2015-12-23 00:00:00
Jenkins CLI Multiple Vulnerabilities
2015-11-17 00:00:00
Jenkins Multiple Vulnerabilities (Nov 2015) - Windows
2015-12-15 00:00:00
archlinux
archlinux
jenkins: multiple issues
2015-11-18 00:00:00
redhat
redhat
veracode
veracode
Sensitive Information Disclosure
2019-05-02 05:21:25
Cross-Site Scripting (XSS)
2019-05-02 05:21:31
XML External Entity (XXE)
2019-05-02 05:21:23
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
56.8%
Related for UB:CVE-2015-5323