Vulnerability Details :
CloudBees Jenkins before 1.650 and LTS before 1.642.2 do not use a constant-time algorithm to verify CSRF tokens, which makes it easier for remote attackers to bypass a CSRF protection mechanism via a brute-force approach.
Publish Date : 2016-04-07 Last Update Date : 2016-04-07
- CVSS Scores & Vulnerability Types
- Products Affected By CVE-2016-0791
- References For CVE-2016-0791
- Metasploit Modules Related To CVE-2016-0791
There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)