How to Buy
This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote web server hosts a job scheduling / management system that
is affected by an information disclosure vulnerability.
The remote web server hosts a version of Jenkins that is affected by an
information disclosure vulnerability that could allow a local attacker
to obtain passwords and SSH private key passphrases related to accessing
See also :
Upgrade to Jenkins 1.545 or use the plugin update mechanism to obtain
Subversion plugin version 1.54 or greater.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: CGI abuses
Nessus Plugin ID: 72743 ()
Bugtraq ID: 63864
CVE ID: CVE-2013-6372
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.