Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.jenkins-ci.main/jenkins-core@1.566

Type maven

Namespace org.jenkins-ci.main

Name jenkins-core

Version 1.566

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.583

Latest_non_vulnerable_version 2.555

Affected_by_vulnerabilities

url VCID-4swh-vw4s-2kd3

vulnerability_id VCID-4swh-vw4s-2kd3

summary

Jenkins Denial of Service vulnerability
CVE-2014-3661 jenkins: denial of service (SECURITY-87)

references

reference_url

https://access.redhat.com/errata/RHBA-2014:1630

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHBA-2014:1630

reference_url

https://access.redhat.com/errata/RHSA-2016:0070

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2016:0070

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3661.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3661.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3661

reference_id

reference_type

scores

value	0.00157
scoring_system	epss
scoring_elements	0.362
published_at	2026-06-04T12:55:00Z

value	0.00157
scoring_system	epss
scoring_elements	0.36294
published_at	2026-06-05T12:55:00Z

value	0.00157
scoring_system	epss
scoring_elements	0.36304
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3661

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1147758

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=1147758

reference_url

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01

reference_url

https://access.redhat.com/security/cve/CVE-2014-3661

reference_id

CVE-2014-3661

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2014-3661

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-3661

reference_id

CVE-2014-3661

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2014-3661

reference_url	https://github.com/advisories/GHSA-r5m2-g5gc-q43r
reference_id	GHSA-r5m2-g5gc-q43r
reference_type
scores
url	https://github.com/advisories/GHSA-r5m2-g5gc-q43r

fixed_packages

url	pkg:maven/org.jenkins-ci.main/jenkins-core@1.583
purl	pkg:maven/org.jenkins-ci.main/jenkins-core@1.583
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.583

aliases CVE-2014-3661, GHSA-r5m2-g5gc-q43r

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4swh-vw4s-2kd3

url VCID-jutz-hc8r-vqbg

vulnerability_id VCID-jutz-hc8r-vqbg

summary

Jenkins allows remote authenticated users to bypass intended restrictions and create or destroy arbitrary jobs
Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Job/CONFIGURE permission to bypass intended restrictions and create or destroy arbitrary jobs via unspecified vectors.

references

reference_url

https://access.redhat.com/errata/RHBA-2014:1630

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHBA-2014:1630

reference_url

https://access.redhat.com/errata/RHSA-2016:0070

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2016:0070

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3663.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3663.json

reference_url

https://access.redhat.com/security/cve/CVE-2014-3663

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2014-3663

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3663

reference_id

reference_type

scores

value	0.00065
scoring_system	epss
scoring_elements	0.2045
published_at	2026-06-04T12:55:00Z

value	0.00065
scoring_system	epss
scoring_elements	0.20523
published_at	2026-06-05T12:55:00Z

value	0.00065
scoring_system	epss
scoring_elements	0.20511
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3663

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1147764

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=1147764

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-3663

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2014-3663

reference_url

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01

reference_url	https://github.com/advisories/GHSA-64mc-2m9p-23c8
reference_id	GHSA-64mc-2m9p-23c8
reference_type
scores
url	https://github.com/advisories/GHSA-64mc-2m9p-23c8

fixed_packages

url	pkg:maven/org.jenkins-ci.main/jenkins-core@1.583
purl	pkg:maven/org.jenkins-ci.main/jenkins-core@1.583
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.583

aliases CVE-2014-3663, GHSA-64mc-2m9p-23c8

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jutz-hc8r-vqbg

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.566

Package Instance