Sensitive Information Disclosure in Jenkins Fingerprints Pages

Sensitive Information Disclosure in Jenkins Fingerprints Pages

CVE-2015-5317 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request.

Learn more about our Web Application Penetration Testing UK.