Directory traversal vulnerability in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to list directory contents and read arbitrary files in the Jenkins servlet resources via directory traversal sequences in a request to jnlpJars/.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2015-11-25T20:00:00

Updated: 2024-08-06T06:41:09.367Z

Reserved: 2015-07-01T00:00:00

Link: CVE-2015-5322

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-11-25T20:59:13.510

Modified: 2024-11-21T02:32:47.580

Link: CVE-2015-5322

cve-icon Redhat

Severity : Low

Publid Date: 2015-11-11T00:00:00Z

Links: CVE-2015-5322 - Bugzilla