Information Disclosure Vulnerability in CloudBees Jenkins

CVE-2014-2068 · LOW Severity

AV:N/AC:M/AU:S/C:P/I:N/A:N

The doIndex function in hudson/util/RemotingDiagnostics.java in CloudBees Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users with the ADMINISTER permission to obtain sensitive information via vectors related to heapDump.

Learn more about our Cloud Audit.