First published: Tue Sep 30 2014(Updated: )
Jenkins before 1.583 and LTS before 1.565.3 allows remote attackers to enumerate user names via vectors related to login attempts.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Jenkins Jenkins | <=1.582 | |
Redhat Openshift | <=3.1 | |
Jenkins Jenkins | <=1.565.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.