Jenkins Permissions Privileges and Access Controls Vulnerability - CVE-2015-5323 - Vulnerability Database

Jenkins Permissions Privileges and Access Controls Vulnerability - CVE-2015-5323

Medium
Reference: CVE-2015-5323
Title: Jenkins Permissions Privileges and Access Controls Vulnerability
Overview:

Jenkins before 1.638 and LTS before 1.625.2 do not properly restrict access to API tokens which might allow remote administrators to gain privileges and run scripts by using an API token of another user.