jenkins

1,798 tracked vulnerabilities.

CVE-2023-49652 LOW
Jenkins Google Compute Engine Plugin < 4.3.17.1 - Missing Authorization for Credential Enumeration
Nov 29, 2023
CVSS 2.7
EPSS 0.01
CVE-2023-46660 MEDIUM
Jenkins Zanata Plugin <0.6 - Info Disclosure
Oct 25, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-46659 MEDIUM
Jenkins Edgewall Trac Plugin <1.13 - XSS
Oct 25, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-46658 MEDIUM
Jenkins MSTeams Webhook Trigger Plugin <0.1.1 - Info Disclosure
Oct 25, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-46657 MEDIUM
Jenkins Gogs Plugin <1.0.15 - Info Disclosure
Oct 25, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-46656 MEDIUM
Jenkins Multibranch Scan Webhook Trigger Plugin <1.0.9 - Info Discl...
Oct 25, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-46655 MEDIUM
Jenkins CloudBees CD Plugin <1.1.32 - Path Traversal
Oct 25, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-46654 HIGH
Jenkins CloudBees CD Plugin <1.1.32 - Privilege Escalation
Oct 25, 2023
CVSS 8.1
EPSS 0.01
CVE-2023-46653 MEDIUM
Jenkins lambdatest-automation <1.20.10 - Info Disclosure
Oct 25, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-46652 MEDIUM
Jenkins lambdatest-automation <1.20.9 - Info Disclosure
Oct 25, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-46651 MEDIUM
Jenkins Warnings Plugin <10.5.0 - Info Disclosure
Oct 25, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-46650 MEDIUM
Jenkins GitHub Plugin <1.37.3 - XSS
Oct 25, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-36478 HIGH
Eclipse Jetty <11.0.15,10.0.15,9.4.52 - Buffer Overflow
Oct 10, 2023
CVSS 7.5
EPSS 0.04
CVE-2023-44487 HIGH KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 1.00
CVE-2023-43502 MEDIUM
Jenkins Build Failure Analyzer Plugin <2.4.1 - CSRF
Sep 20, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-43501 MEDIUM
Jenkins Build Failure Analyzer Plugin <2.4.1 - SSRF
Sep 20, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-43500 HIGH
Jenkins Build Failure Analyzer Plugin <2.4.1 - CSRF
Sep 20, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-43499 MEDIUM
Jenkins Build Failure Analyzer Plugin <2.4.1 - XSS
Sep 20, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-43498 HIGH
Jenkins <2.423-2.414.1 - Info Disclosure
Sep 20, 2023
CVSS 8.1
EPSS 0.01
CVE-2023-43497 HIGH
Jenkins < 2.414.2 and 2.423 - Unrestricted Upload of File with Dangerous Type via Stapler Web Framework
Sep 20, 2023
CVSS 8.1
EPSS 0.01
CVE-2023-43496 HIGH
Jenkins < 2.414.2 and < 2.424 - Incorrect Default Permissions in Plugin Installation
Sep 20, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-43495 MEDIUM
Jenkins < 2.414.2, < 2.424 - Stored Cross-Site Scripting in ExpandableDetailsNote Caption Parameter
Sep 20, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-43494 MEDIUM
Jenkins 2.50-2.423 LTS 2.60.1-2.414.1 - Info Disclosure
Sep 20, 2023
CVSS 4.3
EPSS 0.03
CVE-2023-41947 MEDIUM
Jenkins Frugal Testing Plugin < 1.1 - Missing Authorization for Frugal Testing Connection
Sep 06, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-41946 LOW
Jenkins Frugal Testing Plugin <= 1.1 - Cross-Site Request Forgery
Sep 06, 2023
CVSS 3.5
EPSS 0.00