Description

Directory traversal vulnerability in Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Overall/READ permission to read arbitrary files via unspecified vectors.

Remediation

References

CVE-2014-3664

Related Vulnerabilities

Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7925)

WordPress Plugin MiniMax-Page Layout Builder Arbitrary File Upload (1.7.1)

WordPress Plugin Gallery-Flagallery Photo Portfolio Multiple Vulnerabilities (2.00)

WordPress Plugin WP Security Safe Cross-Site Request Forgery (2.2.2)

Magento CVE-2019-8090 Vulnerability (CVE-2019-8090)

Severity

Medium

Classification

CVE-2014-3664 CWE-22

Tags

Missing Update Known Vulnerabilities