VulnerableCode Vulnerability Details - VCID-bybe-uz73-eyg9

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-bybe-uz73-eyg9

Essentials
Severities (8)
References (9)
Severity details (7)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-bybe-uz73-eyg9
Aliases	CVE-2014-3664 GHSA-3gp5-92h5-h855
Summary	Jenkins Path Traversal vulnerability Directory traversal vulnerability in Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Overall/READ permission to read arbitrary files via unspecified vectors.
Status	Published
Exploitability	None
Weighted Severity	None
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

System	Score	Found at
generic_textual	MODERATE	https://access.redhat.com/errata/RHBA-2014:1630
generic_textual	MODERATE	https://access.redhat.com/errata/RHSA-2016:0070
generic_textual	MODERATE	https://access.redhat.com/security/cve/CVE-2014-3664
epss	0.00193	https://api.first.org/data/v1/epss?cve=CVE-2014-3664
generic_textual	MODERATE	https://bugzilla.redhat.com/show_bug.cgi?id=1147765
generic_textual	MODERATE	https://exchange.xforce.ibmcloud.com/vulnerabilities/96973
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2014-3664
generic_textual	MODERATE	https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01

Reference id	Reference type	URL
		https://access.redhat.com/errata/RHBA-2014:1630
		https://access.redhat.com/errata/RHSA-2016:0070
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3664.json
		https://access.redhat.com/security/cve/CVE-2014-3664
		https://api.first.org/data/v1/epss?cve=CVE-2014-3664
		https://bugzilla.redhat.com/show_bug.cgi?id=1147765
		https://exchange.xforce.ibmcloud.com/vulnerabilities/96973
		https://nvd.nist.gov/vuln/detail/CVE-2014-3664
		https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.41056
EPSS Score	0.00193
Published At	May 29, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-05-29T09:42:36.504240+00:00	GithubOSV Importer	Import	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-3gp5-92h5-h855/GHSA-3gp5-92h5-h855.json	38.6.0