CVE-2015-1809

Summary

XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query.

Affected Software

VendorProductVersion RangeStatus
CloudBeesJenkinsbefore 1.600affected
CloudBeesJenkins LTSbefore 1.596.1affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References