CVE-2016-0789

CRLF injection vulnerability in the CLI command documentation in Jenkins before 1.650 and LTS before 1.642.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*

Configuration 2 (hide)

cpe:2.3:a:redhat:openshift:3.1:*:*:*:enterprise:*:*:*

Configuration 3 (hide)

cpe:2.3:a:jenkins:jenkins:*:*:*:*:*:*:*:*

Information

Published : 2016-04-07 16:59

Updated : 2018-01-04 18:30


NVD link : CVE-2016-0789

Mitre link : CVE-2016-0789


JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

redhat

  • openshift

jenkins

  • jenkins