Directory traversal vulnerability in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to list directory contents and read arbitrary files in the Jenkins servlet resources via directory traversal sequences in a request to jnlpJars/.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2015-11-25T20:00:00
Updated: 2016-06-09T16:57:01
Reserved: 2015-07-01T00:00:00
Link: CVE-2015-5322
JSON object: View
NVD Information
Status : Analyzed
Published: 2015-11-25T20:59:13.510
Modified: 2019-12-17T17:41:03.340
Link: CVE-2015-5322
JSON object: View
Redhat Information
No data.
CWE