CRLF injection vulnerability in the CLI command documentation in Jenkins prior to 1.650 and LTS prior to 1.642.2 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins jenkins |
||
redhat openshift 3.1 |