Multiple open redirect vulnerabilities in Jenkins before 2.3 and LTS before 1.651.2 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors related to "scheme-relative" URLs.
References
Configurations
History
21 Nov 2024, 02:50
Type | Values Removed | Values Added |
---|---|---|
References | () http://rhn.redhat.com/errata/RHSA-2016-1773.html - | |
References | () https://access.redhat.com/errata/RHSA-2016:1206 - | |
References | () https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2016-05-11 - Vendor Advisory | |
References | () https://www.cloudbees.com/jenkins-security-advisory-2016-05-11 - Vendor Advisory |
Information
Published : 2016-05-17 14:08
Updated : 2024-11-21 02:50
NVD link : CVE-2016-3726
Mitre link : CVE-2016-3726
CVE.ORG link : CVE-2016-3726
JSON object : View
Products Affected
jenkins
- jenkins
redhat
- openshift
CWE