jenkins

1,755 tracked vulnerabilities.

CVE-2023-24436 MEDIUM
Jenkins GitHub Pull Request Builder Plugin <1.42.2 - Info Disclosure
Jan 26, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-24435 MEDIUM
Jenkins GitHub Pull Request Builder Plugin <1.42.2 - SSRF
Jan 26, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-24434 HIGH
Jenkins GitHub Pull Request Builder Plugin <1.42.2 - CSRF
Jan 26, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-24433 MEDIUM
Jenkins Orka by MacStadium Plugin <1.31 - Privilege Escalation
Jan 26, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-24432 HIGH
Jenkins Orka by MacStadium Plugin <1.31 - CSRF
Jan 26, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-24431 MEDIUM
Jenkins Orka by MacStadium Plugin <1.31 - Info Disclosure
Jan 26, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-24430 CRITICAL
Jenkins Semantic Versioning Plugin <1.14 - XXE
Jan 26, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-24429 CRITICAL
Jenkins Semantic Versioning Plugin <1.14 - SSRF
Jan 26, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-24428 MEDIUM
Jenkins Bitbucket OAuth Plugin <0.12 - CSRF
Jan 26, 2023
CVSS 5.7
EPSS 0.00
CVE-2023-24427 CRITICAL
Jenkins Bitbucket OAuth Plugin <0.12 - Auth Bypass
Jan 26, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-24426 HIGH
Jenkins Azure AD Plugin <303.va_91ef20ee49f - Auth Bypass
Jan 26, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-24425 MEDIUM
Jenkins Kubernetes Credentials Provider Plugin <1.208 - Privilege E...
Jan 26, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-24424 HIGH
Jenkins OpenId Connect Authentication Plugin <2.4 - Auth Bypass
Jan 26, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-24423 MEDIUM
Jenkins Gerrit Trigger Plugin <2.38.0 - CSRF
Jan 26, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-24422 HIGH
Jenkins Script Security Plugin <1228.vd93135a_2fb_25 - Sandbox Bypass via Map Constructors
Jan 26, 2023
CVSS 8.8
EPSS 0.00
CVE-2022-46688 MEDIUM
Jenkins Sonar Gerrit Plugin <377.v8f3808963dc5 - CSRF
Dec 12, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-46687 MEDIUM
Jenkins Spring Config Plugin <2.0.0 - XSS
Dec 12, 2022
CVSS 5.4
EPSS 0.09
CVE-2022-46686 MEDIUM
Jenkins Custom Build Properties Plugin <2.79 - XSS
Dec 12, 2022
CVSS 5.4
EPSS 0.09
CVE-2022-46684 MEDIUM
Jenkins Checkmarx Plugin <2022.3.3 - XSS
Dec 12, 2022
CVSS 5.4
EPSS 0.09
CVE-2022-46683 MEDIUM
Jenkins Google Login Plugin <1.7 - Open Redirect
Dec 12, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-46682 CRITICAL
Jenkins Plot Plugin < 2.1.12 - XML External Entity Injection
Dec 12, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-45401 MEDIUM
Jenkins Associated Files Plugin < 0.2.1 - Stored Cross-Site Scripting via Unescaped File Names
Nov 15, 2022
CVSS 5.4
EPSS 0.04
CVE-2022-45400 CRITICAL
Jenkins JAPEX Plugin < 1.7 - XML External Entity Injection
Nov 15, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-45399 MEDIUM
Jenkins Cluster Statistics Plugin < 0.4.6 - Missing Authorization
Nov 15, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-45398 MEDIUM
Jenkins Cluster Statistics Plugin < 0.4.6 - Cross-Site Request Forgery
Nov 15, 2022
CVSS 4.3
EPSS 0.00
Products
jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6
Quick Filters
Critical CVEs With Exploits In CISA KEV