You are here

CVE-2013-0327

Vincent (CVE) Danen's picture
Cross-site request forgery (CSRF) vulnerability in Jenkins master in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to hijack the authentication of users via unknown vectors.

Details Source

Mitre

Public Date

2013-02-17 00:00:00

Impact

Moderate

Bugzilla

CVE-2013-0327 jenkins: cross-site request forgery (CSRF) on Jenkins master

Bugzilla ID

914 875

CVSS Status

verified

Base Score

4.30

Base Metrics

AV:N/AC:M/Au:N/C:N/I:P/A:N

Red Hat Security Errata

Platform Errata Release Date
Red Hat OpenShift Enterprise Client Tools (jenkins) RHSA-2013:0638 2013-03-12

CWE

CWE-352

Affected Packages State

Platform Package State
Red Hat OpenShift Enterprise 1 jenkins Affected