jenkins
1,798 tracked vulnerabilities.
CVE-2021-21654
MEDIUM
Jenkins P4 Plugin <1.11.4 - Privilege Escalation
May 11, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21653
MEDIUM
Jenkins Xray - Test Management for Jira Plugin <2.4.0 - Info Disclo...
May 11, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21652
HIGH
Jenkins Xray - Test Management for Jira < 2.4.0 - Cross-Site Request Forgery
May 11, 2021
CVSS 7.1
EPSS 0.01
CVE-2021-21651
MEDIUM
Jenkins S3 publisher Plugin <0.11.6 - Info Disclosure
May 11, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21650
MEDIUM
Jenkins S3 publisher Plugin <0.11.6 - Info Disclosure
May 11, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21649
MEDIUM
Jenkins Dashboard View Plugin < 2.15 - Stored Cross-Site Scripting via Image Dashboard Portlet URL
May 11, 2021
CVSS 5.4
EPSS 0.73
CVE-2021-21648
MEDIUM
Jenkins Credentials Plugin < 2.3.18 - Reflected Cross-Site Scripting
May 11, 2021
CVSS 6.1
EPSS 0.11
CVE-2021-21647
MEDIUM
Jenkins CloudBees CD Plugin <1.1.21 - Privilege Escalation
Apr 21, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21646
HIGH
Jenkins Templating Engine Plugin <2.1 - RCE
Apr 21, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-21645
MEDIUM
Jenkins Config File Provider Plugin <3.7.0 - Info Disclosure
Apr 21, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21644
MEDIUM
Jenkins Config File Provider Plugin < 3.7.0 - Cross-Site Request Forgery via Configuration File Deletion
Apr 21, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-21643
MEDIUM
Jenkins Config File Provider Plugin <3.7.0 - Info Disclosure
Apr 21, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21642
HIGH
Jenkins Config File Provider Plugin < 3.7.0 - XML External Entity Injection
Apr 21, 2021
CVSS 8.1
EPSS 0.38
CVE-2021-21641
MEDIUM
Jenkins promoted builds < 3.9 - Cross-Site Request Forgery
Apr 07, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21640
MEDIUM
Jenkins <2.286-<2.277.1 - Info Disclosure
Apr 07, 2021
CVSS 4.3
EPSS 0.02
CVE-2021-21639
MEDIUM
Jenkins <2.286-<2.277.1 - Privilege Escalation
Apr 07, 2021
CVSS 4.3
EPSS 0.03
CVE-2021-28165
HIGH
Eclipse Jetty 7.2.2-9.4.38, 10.0.0.alpha0-10.0.1, 11.0.0.alpha0-11.0.1 - Denial of Service via Invalid TLS Frame
Apr 01, 2021
CVSS 7.5
EPSS 0.54
CVE-2021-21638
HIGH
Jenkins Team Foundation Server Plugin < 5.157.1 - Cross-Site Request Forgery
Mar 30, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21637
MEDIUM
Jenkins Team Foundation Server Plugin < 5.157.1 - Missing Authorization for Credential Capture via URL Connection
Mar 30, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21636
MEDIUM
Jenkins Team Foundation Server Plugin < 5.157.1 - Missing Authorization for Credentials Enumeration
Mar 30, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21635
MEDIUM
Jenkins REST List Parameter Plugin < 1.3.0 - Stored Cross-Site Scripting via Parameter Name Reference
Mar 30, 2021
CVSS 5.4
EPSS 0.09
CVE-2021-21634
MEDIUM
Jenkins Jabber (XMPP) Notifier and Control Plugin < 1.41 - Insufficiently Protected Credentials
Mar 30, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21633
HIGH
Jenkins OWASP Dependency-Track < 3.1.0 - Cross-Site Request Forgery
Mar 30, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21632
MEDIUM
Jenkins OWASP Dependency-Track < 3.1.0 - Missing Authorization for URL Connection
Mar 30, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21631
MEDIUM
Jenkins Cloud Statistics Plugin < 0.26 - Missing Authorization in HTTP Endpoint
Mar 30, 2021
CVSS 4.3
EPSS 0.01
Products
jenkins 267
pipeline\ 40
script_security 35
active_directory 12
blue_ocean 11
email_extension 11
git 11
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
credentials_binding 8
github_branch_source 8
ns-nd_integration_performance_publisher 8
html_publisher 7
job_configuration_history 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
git_client 6
git_parameter 6
github 6
github_pull_request_builder 6
Quick Filters