Description

Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users to cause a denial of service (improper plug-in and tool installation) via crafted update center data.

Remediation

References

CVE-2015-1808

Related Vulnerabilities

Django Resource Management Errors Vulnerability (CVE-2014-0481)

Oracle Database Server CVE-2006-5332 Vulnerability (CVE-2006-5332)

Jenkins Improper Authentication Vulnerability (CVE-2017-1000354)

WordPress Plugin MarketPress-WordPress eCommerce PHP Object Injection (3.2.6)

Oracle HTTP Server Improper Initialization Vulnerability (CVE-2022-22719)

Severity

Low

Classification

CVE-2015-1808 CWE-20

Tags

Missing Update Known Vulnerabilities