Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jenkins Permissions Privileges and Access Controls Vulnerability - CVE-2015-1814 - Vulnerability Database
Jenkins

Jenkins Permissions Privileges and Access Controls Vulnerability - CVE-2015-1814

High
Reference: CVE-2015-1814
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-1814
Title: Jenkins Permissions Privileges and Access Controls Vulnerability
Overview:

The API token-issuing service in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to gain privileges via a quotforced API token changequot involving anonymous users.