Description

Directory traversal vulnerability in the CLI job creation (hudson/cli/CreateJobCommand.java) in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to overwrite arbitrary files via the job name.

Remediation

References

CVE-2014-2059

Related Vulnerabilities

WordPress Plugin Nofollow Links Cross-Site Scripting (1.0.10)

WordPress Plugin WP Accurate Form Data Multiple Vulnerabilities (1.2)

Oracle Database Server CVE-2011-0787 Vulnerability (CVE-2011-0787)

WordPress Plugin Zendesk Help Center by BestWebSoft Cross-Site Scripting (1.0.4)

WordPress Plugin CM Footnotes Cross-Site Scripting (1.1.4)

Severity

Medium

Classification

CVE-2014-2059 CWE-22

Tags

Missing Update Known Vulnerabilities