Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.jenkins-ci.main/jenkins-core@1.600
purl pkg:maven/org.jenkins-ci.main/jenkins-core@1.600
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (5)
Vulnerability Summary Aliases
VCID-cqe3-pbjf-qkc4 Jenkins does not Restrict Reserved Names Allowing for Privilege Escalation The HudsonPrivateSecurityRealm class in Jenkins before 1.600 and LTS before 1.596.1 does not restrict access to reserved names when using the "Jenkins' own user database" setting, which allows remote attackers to gain privileges by creating a reserved name. CVE-2015-1810
GHSA-37wm-28rm-56vw
VCID-n69u-cg8k-skaf Jenkins allows for Privilege Escalation by Remote Authenticated Users The combination filter Groovy script in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with job configuration permission to gain privileges and execute arbitrary code on the master via unspecified vectors. CVE-2015-1806
GHSA-mm9c-4cv4-7rfv
VCID-qc55-9uv5-nqbw XML external entity (XXE) vulnerability in Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document. CVE-2015-1811
GHSA-qg7x-4h4q-3m49
VCID-s8m8-76fx-d3ec XML external entity (XXE) vulnerability in Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query. CVE-2015-1809
GHSA-qj27-w92h-fc9r
VCID-vavx-fuwd-jbde Jenkins Vulnerable to Denial of Service (DoS) Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users to cause a denial of service (improper plug-in and tool installation) via crafted update center data. CVE-2015-1808
GHSA-3rwx-3vwh-mwxc

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-29T17:32:46.767790+00:00 GitLab Importer Fixing VCID-cqe3-pbjf-qkc4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.main/jenkins-core/CVE-2015-1810.yml 38.6.0
2026-05-29T09:42:55.686776+00:00 GithubOSV Importer Fixing VCID-s8m8-76fx-d3ec https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qj27-w92h-fc9r/GHSA-qj27-w92h-fc9r.json 38.6.0
2026-05-29T09:41:05.636682+00:00 GithubOSV Importer Fixing VCID-cqe3-pbjf-qkc4 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-37wm-28rm-56vw/GHSA-37wm-28rm-56vw.json 38.6.0
2026-05-29T09:36:53.023584+00:00 GithubOSV Importer Fixing VCID-qc55-9uv5-nqbw https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qg7x-4h4q-3m49/GHSA-qg7x-4h4q-3m49.json 38.6.0
2026-05-29T09:35:23.773941+00:00 GithubOSV Importer Fixing VCID-vavx-fuwd-jbde https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-3rwx-3vwh-mwxc/GHSA-3rwx-3vwh-mwxc.json 38.6.0
2026-05-29T09:33:11.694916+00:00 GithubOSV Importer Fixing VCID-n69u-cg8k-skaf https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mm9c-4cv4-7rfv/GHSA-mm9c-4cv4-7rfv.json 38.6.0