Vulnerability Details CVE-2015-1809
XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 69.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2015-1809
-
cpe:2.3:a:jenkins:cloudbees:*
-
cpe:2.3:a:jenkins:cloudbees:1.596.1