Description

Directory traversal vulnerability in Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Overall/READ permission to read arbitrary files via unspecified vectors.

Remediation

References

CVE-2014-3664

Related Vulnerabilities

MySQL CVE-2022-21328 Vulnerability (CVE-2022-21328)

WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Cross-Site Scripting (9.1)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29713)

PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-3062)

Oracle Database Server CVE-2018-3110 Vulnerability (CVE-2018-3110)

Severity

Medium

Classification

CVE-2014-3664 CWE-22

Tags

Missing Update Known Vulnerabilities