HIGH 7.5 Maven
Hash collision attack vulnerability in Jenkins
GHSA-pchp-c5w8-47gc · CVE-2012-0785
Published · Modified
Description
Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "the Hash DoS attack."
References
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2012-0785
- WEB https://access.redhat.com/security/cve/cve-2012-0785
- WEB https://jenkins.io/security/advisory/2012-01-12
- WEB https://security-tracker.debian.org/tracker/CVE-2012-0785
- WEB https://www.cloudbees.com/jenkins-security-advisory-2012-01-12
- WEB http://www.openwall.com/lists/oss-security/2012/01/20/8
Ready to move
Start Securing
Free, no credit card | First findings in minutes