Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins suffers from a user enumeration vulnerability that stems from an observable time difference between a valid user and an invalid user on the login form. An attacker could exploit the vulnerability by using an invalid user name and making a login attempt with a valid user name and an incorrect password.
CPE | Name | Operator | Version |
---|---|---|---|
jenkins jenkins | le | 2.355 | |
jenkins jenkins <=lts | eq | 2.332.3 |