0.002 Low
EPSS
Percentile
51.3%
Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with read access to obtain sensitive plugin installation information by leveraging missing permissions checks in unspecified XML/JSON API endpoints.
launchpad.net/bugs/cve/CVE-2016-3723
nvd.nist.gov/vuln/detail/CVE-2016-3723
security-tracker.debian.org/tracker/CVE-2016-3723
wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2016-05-11
www.cve.org/CVERecord?id=CVE-2016-3723