jenkins
1,798 tracked vulnerabilities.
CVE-2022-45390
MEDIUM
Jenkins loader.io < 1.0.1 - Missing Authorization for Credential ID Enumeration
Nov 15, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-45389
MEDIUM
Jenkins XP-Dev Plugin < 1.0 - Unauthenticated Build Trigger via Repository Specification
Nov 15, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-45388
HIGH
Jenkins Config Rotator Plugin < 2.0.1 - Unauthenticated Arbitrary File Read via File Name Query Parameter
Nov 15, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-45387
MEDIUM
Jenkins BART Plugin < 1.0.3 - Stored Cross-Site Scripting in Build Log Renderer
Nov 15, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-45386
MEDIUM
Jenkins Violations Plugin < 0.7.11 - XML External Entity Injection
Nov 15, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-45385
HIGH
Jenkins CloudBees Docker Hub/Registry Notification Plugin < 2.6.2.1 - Unauthenticated Build Trigger
Nov 15, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-45384
MEDIUM
Jenkins Reverse Proxy Auth Plugin <= 1.7.3 - Insufficiently Protected Credentials in LDAP Manager Password Storage
Nov 15, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-45383
MEDIUM
Jenkins Support Core Plugin < 1206.1208.v9b_7a_1d48db_0f - Incorrect Authorization
Nov 15, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-45382
MEDIUM
Jenkins Naginator Plugin < 1.18.2 - Stored Cross-Site Scripting via Build Display Name
Nov 15, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-45381
HIGH
Jenkins Pipeline Utility Steps < 2.13.2 - Arbitrary File Read via Apache Commons Configuration Interpolator
Nov 15, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-45380
MEDIUM
Jenkins JUnit Plugin < 1160.vf1f01a_a_ea_b_7f - Stored Cross-Site Scripting via Test Report URL Conversion
Nov 15, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-45379
HIGH
Jenkins Script Security Plugin < 1190.v65867a_a_47126 - Inadequate Encryption Strength via SHA-1 Hash Collision
Nov 15, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-38666
HIGH
Jenkins NS-ND Integration Performance Publisher Plugin <4.8.0.146 -...
Nov 15, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-43435
MEDIUM
Jenkins 360 FireLine Plugin <1.7.2 - Info Disclosure
Oct 19, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-43434
MEDIUM
Jenkins NeuVector Vuln Scanner <1.20 - Info Disclosure
Oct 19, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-43433
MEDIUM
Jenkins ScreenRecorder Plugin <0.7 - Info Disclosure
Oct 19, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-43432
MEDIUM
Jenkins XFramium Builder Plugin <1.0.22 - XSS
Oct 19, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-43431
MEDIUM
Jenkins Compuware Strobe Measurement Plugin <1.0.1 - Info Disclosure
Oct 19, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-43430
HIGH
Jenkins Compuware Topaz for Total Test Plugin <2.4.8 - XXE
Oct 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-43429
HIGH
Jenkins Compuware Topaz for Total Test Plugin <2.4.8 - Info Disclosure
Oct 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-43428
MEDIUM
Jenkins Compuware Topaz for Total Test Plugin <2.4.8 - Info Disclosure
Oct 19, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-43427
MEDIUM
Jenkins Compuware Topaz for Total Test Plugin <2.4.8 - Info Disclosure
Oct 19, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-43426
MEDIUM
Jenkins S3 Explorer Plugin <1.0.8 - Info Disclosure
Oct 19, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-43425
MEDIUM
Jenkins Custom Checkbox Parameter Plugin <1.4 - XSS
Oct 19, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-43424
MEDIUM
Jenkins Compuware Xpediter Code Coverage Plugin <1.0.7 - Info Discl...
Oct 19, 2022
CVSS 5.3
EPSS 0.01
Products
jenkins 267
pipeline\ 40
script_security 35
active_directory 12
blue_ocean 11
email_extension 11
git 11
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
credentials_binding 8
github_branch_source 8
ns-nd_integration_performance_publisher 8
html_publisher 7
job_configuration_history 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
git_client 6
git_parameter 6
github 6
github_pull_request_builder 6
Quick Filters