Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-b5mh-28pd-fbe3
SummaryBuildTrigger in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to bypass access restrictions and execute arbitrary jobs by configuring a job to trigger another job. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7330.
Aliases
0
alias CVE-2014-2058
1
alias GHSA-7fpg-pp3m-h22f
Fixed_packages
0
url pkg:maven/org.jenkins-ci.main/jenkins-core@1.532.2
purl pkg:maven/org.jenkins-ci.main/jenkins-core@1.532.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.532.2
1
url pkg:maven/org.jenkins-ci.main/jenkins-core@1.551
purl pkg:maven/org.jenkins-ci.main/jenkins-core@1.551
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.551
Affected_packages
0
url pkg:maven/org.jenkins-ci.main/jenkins-core@1.533
purl pkg:maven/org.jenkins-ci.main/jenkins-core@1.533
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfu-spf7-a3hw
1
vulnerability VCID-52sp-kv9t-gye3
2
vulnerability VCID-6avm-s2zj-5qex
3
vulnerability VCID-b5mh-28pd-fbe3
4
vulnerability VCID-bkyy-edpd-m3cy
5
vulnerability VCID-bn9w-mr5k-ufen
6
vulnerability VCID-ds2c-vfv9-1yhf
7
vulnerability VCID-hvd6-bj7t-q7fj
8
vulnerability VCID-u21t-wbdr-auez
9
vulnerability VCID-u321-xdwe-gfdp
10
vulnerability VCID-w6we-64uv-d3h7
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.533
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-2058
reference_id
reference_type
scores
0
value 0.00056
scoring_system epss
scoring_elements 0.17583
published_at 2026-04-24T12:55:00Z
1
value 0.00056
scoring_system epss
scoring_elements 0.17755
published_at 2026-04-09T12:55:00Z
2
value 0.00056
scoring_system epss
scoring_elements 0.17774
published_at 2026-04-11T12:55:00Z
3
value 0.00056
scoring_system epss
scoring_elements 0.17728
published_at 2026-04-12T12:55:00Z
4
value 0.00056
scoring_system epss
scoring_elements 0.17681
published_at 2026-04-13T12:55:00Z
5
value 0.00056
scoring_system epss
scoring_elements 0.17627
published_at 2026-04-16T12:55:00Z
6
value 0.00056
scoring_system epss
scoring_elements 0.17635
published_at 2026-04-18T12:55:00Z
7
value 0.00056
scoring_system epss
scoring_elements 0.17672
published_at 2026-04-21T12:55:00Z
8
value 0.00056
scoring_system epss
scoring_elements 0.17691
published_at 2026-04-01T12:55:00Z
9
value 0.00056
scoring_system epss
scoring_elements 0.17851
published_at 2026-04-02T12:55:00Z
10
value 0.00056
scoring_system epss
scoring_elements 0.17905
published_at 2026-04-04T12:55:00Z
11
value 0.00056
scoring_system epss
scoring_elements 0.17606
published_at 2026-04-07T12:55:00Z
12
value 0.00056
scoring_system epss
scoring_elements 0.17694
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-2058
1
reference_url https://github.com/jenkinsci/jenkins
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/jenkinsci/jenkins
2
reference_url https://github.com/jenkinsci/jenkins/commit/b6b2a367a7976be80a799c6a49fa6c58d778b50e
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/jenkinsci/jenkins/commit/b6b2a367a7976be80a799c6a49fa6c58d778b50e
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-2058
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:S/C:P/I:P/A:P
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-2058
4
reference_url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-02-14
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-02-14
5
reference_url http://www.openwall.com/lists/oss-security/2014/02/21/2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2014/02/21/2
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:jenkins:jenkins:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins:*:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*
reference_id cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*
8
reference_url https://github.com/advisories/GHSA-7fpg-pp3m-h22f
reference_id GHSA-7fpg-pp3m-h22f
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-7fpg-pp3m-h22f
Weaknesses
0
cwe_id 264
name Permissions, Privileges, and Access Controls
description Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-b5mh-28pd-fbe3