jenkins
1,798 tracked vulnerabilities.
CVE-2021-21630
MEDIUM
Jenkins Extra Columns Plugin < 1.22 - Stored Cross-Site Scripting in Build Parameters Column
Mar 30, 2021
CVSS 5.4
EPSS 0.72
CVE-2021-21629
HIGH
Jenkins Build With Parameters Plugin < 1.5 - Cross-Site Request Forgery
Mar 30, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21628
MEDIUM
Jenkins Build With Parameters Plugin < 1.5 - Stored Cross-Site Scripting in Parameter Names and Descriptions
Mar 30, 2021
CVSS 5.4
EPSS 0.82
CVE-2021-21627
HIGH
Jenkins Libvirt Agents Plugin < 1.9.0 - Cross-Site Request Forgery
Mar 18, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21626
MEDIUM
Jenkins Warnings Next Generation Plugin <= 8.4.4 - Missing Authorization in Form Validation
Mar 18, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21625
MEDIUM
Jenkins CloudBees AWS Credentials Plugin < 1.28 - Missing Authorization in HTTP Endpoint Helper Method
Mar 18, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21624
MEDIUM
Jenkins Role-based Authorization Strategy Plugin < 3.1 - Incorrect Authorization
Mar 18, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21623
MEDIUM
Jenkins Matrix Authorization Strategy Plugin < 2.6.5 - Incorrect Authorization
Mar 18, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21622
MEDIUM
Jenkins Artifact Repository Parameter Plugin <= 1.0.0 - Stored Cross-Site Scripting in Parameter Names and Descriptions
Feb 24, 2021
CVSS 5.4
EPSS 0.09
CVE-2021-21621
MEDIUM
Jenkins Support Core Plugin < 2.72 - Exposure of Sensitive Information via Serialized User Authentication
Feb 24, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-21620
MEDIUM
Jenkins Claim Plugin < 2.18.1 - Cross-Site Request Forgery
Feb 24, 2021
CVSS 4.3
EPSS 0.02
CVE-2021-21619
MEDIUM
Jenkins Claim Plugin < 2.18.1 - Stored Cross-Site Scripting via User Display Name
Feb 24, 2021
CVSS 5.4
EPSS 0.09
CVE-2021-21618
MEDIUM
Jenkins Repository Connector Plugin < 2.0.2 - Stored Cross-Site Scripting in Parameter Names and Descriptions
Feb 24, 2021
CVSS 5.4
EPSS 0.82
CVE-2021-21617
HIGH
Jenkins Configuration Slicing Plugin < 1.51 - Cross-Site Request Forgery
Feb 24, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21616
MEDIUM
Jenkins Active Choices Plugin < 2.5.2 - Stored Cross-Site Scripting via Reference Parameter Values
Feb 24, 2021
CVSS 4.6
EPSS 0.79
CVE-2021-21615
MEDIUM
Jenkins < 2.263.3 and < 2.276 - Arbitrary File Read via Workspace File Browser TOCTOU Race Condition
Jan 26, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-21614
MEDIUM
Jenkins Bumblebee HP ALM Plugin <= 4.1.5 - Insufficiently Protected Credentials
Jan 13, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-21613
MEDIUM
Jenkins TICS Plugin < 2020.3.0.6 - Cross-Site Scripting via TICS Service Response
Jan 13, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-21612
MEDIUM
Jenkins TraceTronic ECU-TEST Plugin < 2.23.1 - Insufficiently Protected Credentials
Jan 13, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-21611
MEDIUM
Jenkins < 2.263.1, < 2.274 - Stored Cross-Site Scripting in New Item Page
Jan 13, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-21610
MEDIUM
Jenkins < 2.263.1, < 2.274 - Reflected Cross-Site Scripting via Markup Preview URL Parameter
Jan 13, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-21609
MEDIUM
Jenkins < 2.263.1, < 2.274 - Incorrect Authorization via URL Path Matching
Jan 13, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-21608
MEDIUM
Jenkins < 2.263.1, < 2.274, and 2.275 - Cross-Site Scripting via Button Label
Jan 13, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-21607
MEDIUM
Jenkins < 2.263.1, < 2.274 - Denial of Service via Unbounded Graph Query Parameters
Jan 13, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21606
MEDIUM
Jenkins < 2.263.1, < 2.274 - Unauthenticated XML File Existence Check via Fingerprint ID Validation
Jan 13, 2021
CVSS 4.3
EPSS 0.01
Products
jenkins 267
pipeline\ 40
script_security 35
active_directory 12
blue_ocean 11
email_extension 11
git 11
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
credentials_binding 8
github_branch_source 8
ns-nd_integration_performance_publisher 8
html_publisher 7
job_configuration_history 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
git_client 6
git_parameter 6
github 6
github_pull_request_builder 6
Quick Filters