Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2022-25178 MEDIUM

Jenkins Pipeline < 552.vd9cc05b8a2e1 - Path Traversal via libraryResource Step

CVE-2022-25177 MEDIUM

Jenkins Pipeline < 552.vd9cc05b8a2e1 - Arbitrary File Read via libraryResource Step

CVE-2022-25176 MEDIUM

Jenkins Pipeline < 2648.va9433432b33c - Arbitrary File Read via Symbolic Link Following

CVE-2022-25175 HIGH

Jenkins Pipeline Multibranch < 706.vd43c65dec013 - Authenticated OS Command Injection via readTrusted Step

CVE-2022-25174 HIGH

Jenkins Pipeline < 552.vd9cc05b8a2e1 - Authenticated OS Command Injection via SCM Checkout Directory

CVE-2022-25173 HIGH

Jenkins Pipeline: Groovy Plugin < 2648.va9433432b33c - OS Command Injection via SCM Content

CVE-2022-0538 HIGH

Jenkins < 2.334 and LTS < 2.319.3 - Deserialization of Untrusted Data

CVE-2022-23118 HIGH

Jenkins Debian Package Builder Plugin < 1.6.11 - OS Command Execution via Agent-Controlled Git Path

CVE-2022-23117 HIGH

Jenkins Conjur Secrets Plugin < 1.0.9 - Credential Exposure via Agent Process Control

CVE-2022-23116 HIGH

Jenkins Conjur Secrets Plugin < 1.0.9 - Sensitive Data Exposure via Agent Process Decryption

CVE-2022-23115 MEDIUM

Jenkins batch task < 1.19 - Cross-Site Request Forgery

CVE-2022-23114 LOW

Jenkins Publish Over SSH Plugin <= 1.22 - Insufficiently Protected Credentials

CVE-2022-23113 MEDIUM

Jenkins Publish Over SSH Plugin <= 1.22 - Path Traversal via File Name Validation

CVE-2022-23112 MEDIUM

Jenkins Publish Over SSH Plugin < 1.22 - Missing Authorization for SSH Server Connection

CVE-2022-23111 MEDIUM

Jenkins Publish Over SSH Plugin < 1.22 - Cross-Site Request Forgery

CVE-2022-23110 MEDIUM

Jenkins Publish Over SSH Plugin <= 1.22 - Stored Cross-Site Scripting via SSH Server Name

CVE-2022-23109 MEDIUM

Jenkins HashiCorp Vault Plugin <= 3.7.0 - Credential Exposure in Pipeline Build Logs

CVE-2022-23108 MEDIUM

Jenkins Badge Plugin < 1.9 - Stored Cross-Site Scripting via Badge Description

CVE-2022-23107 HIGH

Jenkins Warnings Next Generation Plugin <= 9.10.2 - Path Traversal via Custom ID Configuration

CVE-2022-23106 MEDIUM

Jenkins Configuration as Code Plugin < 1.55 - Authentication Token Timing Attack

CVE-2022-23105 MEDIUM

Jenkins Active Directory Plugin < 2.25 - Cleartext Transmission of Sensitive Information

CVE-2022-20621 MEDIUM

Jenkins Metrics Plugin <4.0.2.8 - Info Disclosure

CVE-2022-20620 MEDIUM

Jenkins SSH Agent Plugin <1.23 - Info Disclosure

CVE-2022-20619 HIGH

Jenkins Bitbucket Branch Source Plugin <737.vdf9dc06105be - CSRF

CVE-2022-20618 MEDIUM

Jenkins Bitbucket Branch Source Plugin < 737.vdf9dc06105be - Missing Authorization for Credential ID Enumeration

Previous Page 32 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy