Cross-site request forgery (CSRF) vulnerability in Jenkins before 1.640 and LTS before 1.625.2 allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via vectors related to the HTTP GET method.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2016-02-03T15:00:00

Updated: 2024-08-06T07:51:28.599Z

Reserved: 2015-09-29T00:00:00

Link: CVE-2015-7537

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2016-02-03T18:59:02.007

Modified: 2019-12-17T17:41:03.340

Link: CVE-2015-7537

cve-icon Redhat

Severity : Moderate

Publid Date: 2015-12-09T00:00:00Z

Links: CVE-2015-7537 - Bugzilla