jenkins

1,798 tracked vulnerabilities.

CVE-2019-10419 MEDIUM
Jenkins Vfabric Application Director < 1.3 - Insufficiently Protected Credentials
Sep 25, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10418 CRITICAL
Jenkins Kubernetes::Pipeline::Arquillian Steps Plugin - Code Injection
Sep 25, 2019
CVSS 9.9
EPSS 0.01
CVE-2019-10417 CRITICAL
Jenkins Kubernetes::Pipeline::Kubernetes Steps Plugin - RCE
Sep 25, 2019
CVSS 9.9
EPSS 0.01
CVE-2019-10416 MEDIUM
Jenkins Violation Comments TO Gitlab < 2.28 - Insufficiently Protected Credentials
Sep 25, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10415 MEDIUM
Jenkins Violation Comments TO Gitlab < 2.28 - Insufficiently Protected Credentials
Sep 25, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10414 MEDIUM
Jenkins Git Changelog Plugin < 2.17 - Insufficiently Protected Credentials in Job Config Files
Sep 25, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10413 MEDIUM
Jenkins Data Theorem Mobile App Security < 1.3 - Insufficiently Protected Credentials
Sep 25, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10412 HIGH
Jenkins Inedo ProGet Plugin < 1.2 - Cleartext Transmission of Sensitive Information
Sep 25, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-10411 HIGH
Jenkins Inedo BuildMaster Plugin < 2.4.0 - Cleartext Transmission of Sensitive Credentials
Sep 25, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-10410 MEDIUM
Jenkins Log Parser Plugin < 2.0 - Cross-Site Scripting via Error Message
Sep 25, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10409 MEDIUM
Jenkins Project Inheritance Plugin < 19.08.01 - Missing Authorization
Sep 25, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10408 MEDIUM
Jenkins Project Inheritance Plugin < 19.08.01 - Cross-Site Request Forgery
Sep 25, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10407 MEDIUM
Jenkins Project Inheritance Plugin < 2.0.0 - Exposure of Sensitive Information via Environment Variable Display
Sep 25, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10406 MEDIUM
Jenkins < 2.196 and LTS < 2.176.3 - Authenticated Stored Cross-Site Scripting via Jenkins URL Configuration
Sep 25, 2019
CVSS 4.8
EPSS 0.01
CVE-2019-10405 MEDIUM NUCLEI
Jenkins < 2.196 and LTS < 2.176.3 - Cross-Site Scripting via /whoAmI/ Endpoint
Sep 25, 2019
CVSS 5.4
EPSS 0.66
CVE-2019-10404 MEDIUM
Jenkins < 2.176.3, < 2.196 - Stored Cross-Site Scripting in Queue Item Blocked Reason Tooltip
Sep 25, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10403 MEDIUM
Jenkins < 2.196 and LTS < 2.176.3 - Stored Cross-Site Scripting in SCM Tag Action Tooltip
Sep 25, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10402 MEDIUM
Jenkins < 2.176.3, < 2.196 - Stored Cross-Site Scripting via f:combobox Form Control
Sep 25, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10401 MEDIUM
Jenkins < 2.176.3, < 2.196 - Stored Cross-Site Scripting via f:expandableTextBox Form Control
Sep 25, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10400 MEDIUM
Jenkins Script Security Plugin <1.62 - RCE
Sep 12, 2019
CVSS 4.2
EPSS 0.01
CVE-2019-10399 MEDIUM
Jenkins Script Security Plugin <1.62 - RCE
Sep 12, 2019
CVSS 4.2
EPSS 0.01
CVE-2019-10398 MEDIUM
Jenkins Beaker Builder Plugin < 1.9 - Insufficiently Protected Credentials
Sep 12, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10397 LOW
Jenkins Aqua Security Serverless Scanner < 1.0.4 - Cleartext Transmission of Sensitive Information
Sep 12, 2019
CVSS 3.1
EPSS 0.01
CVE-2019-10396 MEDIUM
Jenkins Dashboard View Plugin < 2.11 - Stored Cross-Site Scripting via Build Descriptions
Sep 12, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10395 MEDIUM
Jenkins Build Environment Plugin < 1.6 - Cross-Site Scripting via Unescaped Variables
Sep 12, 2019
CVSS 5.4
EPSS 0.01