Jenkins » Jenkins : Security Vulnerabilities, CVEs, Published In 2015 (Directory traversal) CVSS score >= 2

CVE-2015-5322

Directory traversal vulnerability in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to list directory contents and read arbitrary files in the Jenkins servlet resources via directory traversal sequences in a request to jnlpJars/.
Max CVSS
5.0
EPSS Score
0.33%
Published
2015-11-25
Updated
2019-12-17

CVE-2015-1807

Directory traversal vulnerability in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with certain permissions to read arbitrary files via a symlink, related to building artifacts.
Max CVSS
3.5
EPSS Score
0.16%
Published
2015-10-16
Updated
2016-06-15
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close