Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: debian
Published: 2014-10-17T15:00:00
Updated: 2016-06-09T15:57:01
Reserved: 2014-02-19T00:00:00
Link: CVE-2014-2066
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-10-17T15:55:05.853
Modified: 2016-06-13T23:40:17.913
Link: CVE-2014-2066
JSON object: View
Redhat Information
No data.
CWE