Home

CVE-2016-4987

Description

Directory traversal vulnerability in the Image Gallery plugin before 1.4 in Jenkins allows remote attackers to list arbitrary directories and read arbitrary files via unspecified form fields.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.361

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2016-4987 are fixed in Tupilabs - image-gallery 1.4Windows
Vulnerabilities CVE-2016-4987 are fixed in Tupilabs - image-gallery for Linux 1.4Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234