vulnerability
FreeBSD: VID-e387834a-17ef-11e6-9947-7054d2909b71 (CVE-2016-3722): jenkins -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:N/I:N/A:P) | May 12, 2016 | Dec 10, 2025 | Dec 10, 2025 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:P)
Published
May 12, 2016
Added
Dec 10, 2025
Modified
Dec 10, 2025
Description
Jenkins Security Advisory: Description SECURITY-170 / CVE-2016-3721 Arbitrary build parameters are passed to build scripts as environment variables SECURITY-243 / CVE-2016-3722 Malicious users with multiple user accounts can prevent other users from logging in SECURITY-250 / CVE-2016-3723 Information on installed plugins exposed via API SECURITY-266 / CVE-2016-3724 Encrypted secrets (e.g. passwords) were leaked to users with permission to read configuration SECURITY-273 / CVE-2016-3725 Regular users can trigger download of update site metadata SECURITY-276 / CVE-2016-3726 Open redirect to scheme-relative URLs SECURITY-281 / CVE-2016-3727 Granting the permission to read node configurations allows access to overall system configuration
Solutions
freebsd-upgrade-package-jenkinsfreebsd-upgrade-package-jenkins2freebsd-upgrade-package-jenkins-lts
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.