ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·5/12/2023
CVE-2015-5317 added to CISA KEV: Jenkins Jenkins User Interface (UI)
Status: ✅ Confirmed exploited in the wild
Date added: 2023-05-12
Required action: Apply updates per vendor instructions.
Due date: 2023-06-02
Why this matters
Jenkins User Interface (UI) contains an information disclosure vulnerability that allows users to see the names of jobs and builds otherwise inaccessible to them on the "Fingerprints" pages.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.