Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2015-5322

Directory traversal vulnerability in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to list directory contents and read arbitrary files in the Jenkins servlet resources via directory traversal sequences in a request to jnlpJars/.

  • Published: Nov 25, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-5322
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
redhat / openshift - 3.1.x
redhat / openshift 2.0 2.0.x
jenkins / jenkins - 1.637.x
jenkins / jenkins - 1.625.1.x