Jenkins – SECURITY-180/CVE-2015-1814 PoC

Jenkins – SECURITY-200 / CVE-2015-5323 PoC
February 27, 2019
Jenkins – decrypting credentials.xml
February 28, 2019

Jenkins – SECURITY-180/CVE-2015-1814 PoC

Forced API token change

SECURITY-180/CVE-2015-1814


Affected Versions

  • All Jenkins releases <= 1.605
  • All LTS releases <= 1.596.1

PoC
Tested against Jenkins 1.605


Burp output

Validate new token works

News Reporter
News Reporter
Head of Operations (Banking), Director IT Governance, Teamlead Microsoft, Service Delivery Manager. Interested in Office 365, LAMP, IT Security and much more!