jenkins
1,798 tracked vulnerabilities.
CVE-2019-10368
HIGH
Jenkins JClouds Plugin < 2.14 - Cross-Site Request Forgery via Test Connection Endpoint
Aug 07, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10367
MEDIUM
Jenkins Configuration as Code Plugin < 1.26 - Sensitive Information Exposure in Log Files
Aug 07, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10366
MEDIUM
Jenkins Skytap Cloud CI Plugin < 2.06 - Insufficiently Protected Credentials in config.xml
Jul 31, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10364
MEDIUM
Jenkins Amazon EC2 Plugin < 1.43 - Private Key Exposure in System Log
Jul 31, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10363
MEDIUM
Jenkins Configuration as Code Plugin < 1.24 - Cleartext Transmission of Sensitive Information
Jul 31, 2019
CVSS 4.9
EPSS 0.01
CVE-2019-10362
MEDIUM
Jenkins Configuration as Code Plugin <1.24 - Info Disclosure
Jul 31, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10361
MEDIUM
Jenkins Maven Release Plugin < 0.14.0 - Insufficiently Protected Credentials
Jul 31, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10360
MEDIUM
Jenkins Maven Release Plugin < 0.14.0 - Stored Cross-Site Scripting
Jul 31, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10359
MEDIUM
Jenkins Maven Release Plugin < 0.14.0 - Cross-Site Request Forgery in M2ReleaseAction#doSubmit
Jul 31, 2019
CVSS 6.3
EPSS 0.01
CVE-2019-10358
MEDIUM
Jenkins Maven Integration Plugin < 3.3 - Sensitive Information Exposure in Build Log
Jul 31, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10357
MEDIUM
Jenkins Pipeline < 2.14 - Missing Authorization for SCM Repository Content
Jul 31, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10356
HIGH
Jenkins Script Security Plugin <1.61 - RCE
Jul 31, 2019
CVSS 8.8
EPSS 0.03
CVE-2019-10355
HIGH
Jenkins Script Security Plugin <1.61 - RCE
Jul 31, 2019
CVSS 8.8
EPSS 0.03
CVE-2019-10345
MEDIUM
Jenkins Configuration as Code Plugin < 1.20 - Insufficiently Protected Credentials
Jul 31, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10344
MEDIUM
Jenkins Configuration as Code Plugin < 1.24 - Missing Authorization in HTTP Endpoints
Jul 31, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10343
LOW
Jenkins Configuration as Code Plugin < 1.24 - Sensitive Information Exposure in Log Files
Jul 31, 2019
CVSS 3.3
EPSS 0.00
CVE-2019-1010241
MEDIUM
Jenkins Credentials Binding Plugin 1.17 - Info Disclosure
Jul 19, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10354
MEDIUM
Jenkins < 2.176.1 and < 2.185 - Missing Authorization via Stapler Web Framework
Jul 17, 2019
CVSS 4.3
EPSS 0.02
CVE-2019-10353
HIGH
Jenkins < 2.176.1 and < 2.185 - Cross-Site Request Forgery via Non-Expiring Tokens
Jul 17, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-10352
MEDIUM
Jenkins < 2.176.1, < 2.185 - Authenticated Arbitrary File Write via File Parameter
Jul 17, 2019
CVSS 6.5
EPSS 0.10
CVE-2019-10351
HIGH
Jenkins Caliper CI Plugin < 2.3 - Cleartext Storage of Sensitive Information in Job Configuration
Jul 11, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10350
HIGH
Jenkins Port Allocator Plugin < 1.8 - Cleartext Storage of Sensitive Information in Job Config Files
Jul 11, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10349
MEDIUM
Jenkins Dependency Graph Viewer Plugin < 0.13 - Stored Cross-Site Scripting
Jul 11, 2019
CVSS 5.4
EPSS 0.04
CVE-2019-10348
HIGH
Jenkins Gogs Plugin < 1.0.14 - Cleartext Storage of Sensitive Information in Job Config Files
Jul 11, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10347
HIGH
Jenkins Mashup Portlets < 1.0.9 - Insufficiently Protected Credentials
Jul 11, 2019
CVSS 8.8
EPSS 0.02
Products
jenkins 267
pipeline\ 40
script_security 35
active_directory 12
blue_ocean 11
email_extension 11
git 11
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
credentials_binding 8
github_branch_source 8
ns-nd_integration_performance_publisher 8
html_publisher 7
job_configuration_history 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
git_client 6
git_parameter 6
github 6
github_pull_request_builder 6
Quick Filters