Description
The HudsonPrivateSecurityRealm class in Jenkins before 1.600 and LTS before 1.596.1 does not restrict access to reserved names when using the "Jenkins' own user database" setting, which allows remote attackers to gain privileges by creating a reserved name.
References (4)
Core 4
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2016:0070
Vendor Advisory x_refsource_confirm
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-02-27
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1844.html
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1205627
Scores
EPSS
0.0043
EPSS Percentile
62.9%
Details
CWE
CWE-264
Status
published
Products (4)
jenkins/jenkins
< 1.580.3
jenkins/jenkins
< 1.599
org.jenkins-ci.main/jenkins-core
1.597 - 1.600Maven
redhat/openshift
< 3.1
Published
Oct 16, 2015
Tracked Since
Feb 18, 2026