VYPR
Moderate severityNVD Advisory· Published Oct 16, 2015· Updated Jun 17, 2026

CVE-2015-1814

CVE-2015-1814

Description

The API token-issuing service in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to gain privileges via a "forced API token change" involving anonymous users.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.jenkins-ci.main:jenkins-coreMaven
>= 1.597, < 1.6061.606
org.jenkins-ci.main:jenkins-coreMaven
< 1.596.21.596.2

Affected products

4

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.