Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for Jenkins LTS by CloudBees

    CVE-2015-1811 (GCVE-0-2015-1811)

    Vulnerability from nvd – Published: 2020-01-15 18:05 – Updated: 2024-08-06 04:54
    VLAI
    Summary
    XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document.
    Severity
    No CVSS data available.
    CWE
    • Other
    Assigner
    References
    Impacted products
    Date Public
    2015-02-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T04:54:16.333Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://jenkins.io/security/advisory/2015-02-27/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Jenkins",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.600"
                }
              ]
            },
            {
              "product": "Jenkins LTS",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.596.1"
                }
              ]
            }
          ],
          "datePublic": "2015-02-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Other",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-15T18:05:34.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://jenkins.io/security/advisory/2015-02-27/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secalert@redhat.com",
              "ID": "CVE-2015-1811",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Jenkins",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.600"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Jenkins LTS",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.596.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "CloudBees"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Other"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632",
                  "refsource": "MISC",
                  "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632"
                },
                {
                  "name": "https://jenkins.io/security/advisory/2015-02-27/",
                  "refsource": "CONFIRM",
                  "url": "https://jenkins.io/security/advisory/2015-02-27/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2015-1811",
        "datePublished": "2020-01-15T18:05:34.000Z",
        "dateReserved": "2015-02-17T00:00:00.000Z",
        "dateUpdated": "2024-08-06T04:54:16.333Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-1809 (GCVE-0-2015-1809)

    Vulnerability from nvd – Published: 2020-01-15 18:05 – Updated: 2024-08-06 04:54
    VLAI
    Summary
    XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query.
    Severity
    No CVSS data available.
    CWE
    • Other
    Assigner
    References
    Impacted products
    Date Public
    2015-02-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T04:54:16.372Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://jenkins.io/security/advisory/2015-02-27/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Jenkins",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.600"
                }
              ]
            },
            {
              "product": "Jenkins LTS",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.596.1"
                }
              ]
            }
          ],
          "datePublic": "2015-02-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Other",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-15T18:05:30.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://jenkins.io/security/advisory/2015-02-27/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secalert@redhat.com",
              "ID": "CVE-2015-1809",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Jenkins",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.600"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Jenkins LTS",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.596.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "CloudBees"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Other"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625",
                  "refsource": "MISC",
                  "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625"
                },
                {
                  "name": "https://jenkins.io/security/advisory/2015-02-27/",
                  "refsource": "MISC",
                  "url": "https://jenkins.io/security/advisory/2015-02-27/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2015-1809",
        "datePublished": "2020-01-15T18:05:30.000Z",
        "dateReserved": "2015-02-17T00:00:00.000Z",
        "dateUpdated": "2024-08-06T04:54:16.372Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-1811 (GCVE-0-2015-1811)

    Vulnerability from cvelistv5 – Published: 2020-01-15 18:05 – Updated: 2024-08-06 04:54
    VLAI
    Summary
    XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document.
    Severity
    No CVSS data available.
    CWE
    • Other
    Assigner
    References
    Impacted products
    Date Public
    2015-02-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T04:54:16.333Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://jenkins.io/security/advisory/2015-02-27/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Jenkins",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.600"
                }
              ]
            },
            {
              "product": "Jenkins LTS",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.596.1"
                }
              ]
            }
          ],
          "datePublic": "2015-02-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Other",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-15T18:05:34.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://jenkins.io/security/advisory/2015-02-27/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secalert@redhat.com",
              "ID": "CVE-2015-1811",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Jenkins",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.600"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Jenkins LTS",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.596.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "CloudBees"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Other"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632",
                  "refsource": "MISC",
                  "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205632"
                },
                {
                  "name": "https://jenkins.io/security/advisory/2015-02-27/",
                  "refsource": "CONFIRM",
                  "url": "https://jenkins.io/security/advisory/2015-02-27/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2015-1811",
        "datePublished": "2020-01-15T18:05:34.000Z",
        "dateReserved": "2015-02-17T00:00:00.000Z",
        "dateUpdated": "2024-08-06T04:54:16.333Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-1809 (GCVE-0-2015-1809)

    Vulnerability from cvelistv5 – Published: 2020-01-15 18:05 – Updated: 2024-08-06 04:54
    VLAI
    Summary
    XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query.
    Severity
    No CVSS data available.
    CWE
    • Other
    Assigner
    References
    Impacted products
    Date Public
    2015-02-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T04:54:16.372Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://jenkins.io/security/advisory/2015-02-27/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Jenkins",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.600"
                }
              ]
            },
            {
              "product": "Jenkins LTS",
              "vendor": "CloudBees",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 1.596.1"
                }
              ]
            }
          ],
          "datePublic": "2015-02-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Other",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-15T18:05:30.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://jenkins.io/security/advisory/2015-02-27/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secalert@redhat.com",
              "ID": "CVE-2015-1809",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Jenkins",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.600"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Jenkins LTS",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 1.596.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "CloudBees"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Other"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625",
                  "refsource": "MISC",
                  "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1205625"
                },
                {
                  "name": "https://jenkins.io/security/advisory/2015-02-27/",
                  "refsource": "MISC",
                  "url": "https://jenkins.io/security/advisory/2015-02-27/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2015-1809",
        "datePublished": "2020-01-15T18:05:30.000Z",
        "dateReserved": "2015-02-17T00:00:00.000Z",
        "dateUpdated": "2024-08-06T04:54:16.372Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }