CVE-2015-5324

Published: Nov 25, 2015Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api.

Products: Jenkins: Jenkins · Redhat: Openshift

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Jenkins Jenkins	Up to 1.625.1

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Redhat Openshift	Version 2.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Jenkins Jenkins	Up to 1.637

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Redhat Openshift	Up to 3.1

Source: secalert@redhat.com

Source: secalert@redhat.com

Source: secalert@redhat.com

Vendor Advisory

Source: af854a3a-2127-422b-91ae-364da2661108

Source: af854a3a-2127-422b-91ae-364da2661108

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

No history available yet.