jenkins

1,798 tracked vulnerabilities.

CVE-2019-10368 HIGH
Jenkins JClouds Plugin < 2.14 - Cross-Site Request Forgery via Test Connection Endpoint
Aug 07, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10367 MEDIUM
Jenkins Configuration as Code Plugin < 1.26 - Sensitive Information Exposure in Log Files
Aug 07, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10366 MEDIUM
Jenkins Skytap Cloud CI Plugin < 2.06 - Insufficiently Protected Credentials in config.xml
Jul 31, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10364 MEDIUM
Jenkins Amazon EC2 Plugin < 1.43 - Private Key Exposure in System Log
Jul 31, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10363 MEDIUM
Jenkins Configuration as Code Plugin < 1.24 - Cleartext Transmission of Sensitive Information
Jul 31, 2019
CVSS 4.9
EPSS 0.01
CVE-2019-10362 MEDIUM
Jenkins Configuration as Code Plugin <1.24 - Info Disclosure
Jul 31, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10361 MEDIUM
Jenkins Maven Release Plugin < 0.14.0 - Insufficiently Protected Credentials
Jul 31, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10360 MEDIUM
Jenkins Maven Release Plugin < 0.14.0 - Stored Cross-Site Scripting
Jul 31, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-10359 MEDIUM
Jenkins Maven Release Plugin < 0.14.0 - Cross-Site Request Forgery in M2ReleaseAction#doSubmit
Jul 31, 2019
CVSS 6.3
EPSS 0.01
CVE-2019-10358 MEDIUM
Jenkins Maven Integration Plugin < 3.3 - Sensitive Information Exposure in Build Log
Jul 31, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10357 MEDIUM
Jenkins Pipeline < 2.14 - Missing Authorization for SCM Repository Content
Jul 31, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10356 HIGH
Jenkins Script Security Plugin <1.61 - RCE
Jul 31, 2019
CVSS 8.8
EPSS 0.03
CVE-2019-10355 HIGH
Jenkins Script Security Plugin <1.61 - RCE
Jul 31, 2019
CVSS 8.8
EPSS 0.03
CVE-2019-10345 MEDIUM
Jenkins Configuration as Code Plugin < 1.20 - Insufficiently Protected Credentials
Jul 31, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-10344 MEDIUM
Jenkins Configuration as Code Plugin < 1.24 - Missing Authorization in HTTP Endpoints
Jul 31, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10343 LOW
Jenkins Configuration as Code Plugin < 1.24 - Sensitive Information Exposure in Log Files
Jul 31, 2019
CVSS 3.3
EPSS 0.00
CVE-2019-1010241 MEDIUM
Jenkins Credentials Binding Plugin 1.17 - Info Disclosure
Jul 19, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10354 MEDIUM
Jenkins < 2.176.1 and < 2.185 - Missing Authorization via Stapler Web Framework
Jul 17, 2019
CVSS 4.3
EPSS 0.02
CVE-2019-10353 HIGH
Jenkins < 2.176.1 and < 2.185 - Cross-Site Request Forgery via Non-Expiring Tokens
Jul 17, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-10352 MEDIUM
Jenkins < 2.176.1, < 2.185 - Authenticated Arbitrary File Write via File Parameter
Jul 17, 2019
CVSS 6.5
EPSS 0.10
CVE-2019-10351 HIGH
Jenkins Caliper CI Plugin < 2.3 - Cleartext Storage of Sensitive Information in Job Configuration
Jul 11, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10350 HIGH
Jenkins Port Allocator Plugin < 1.8 - Cleartext Storage of Sensitive Information in Job Config Files
Jul 11, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10349 MEDIUM
Jenkins Dependency Graph Viewer Plugin < 0.13 - Stored Cross-Site Scripting
Jul 11, 2019
CVSS 5.4
EPSS 0.04
CVE-2019-10348 HIGH
Jenkins Gogs Plugin < 1.0.14 - Cleartext Storage of Sensitive Information in Job Config Files
Jul 11, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10347 HIGH
Jenkins Mashup Portlets < 1.0.9 - Insufficiently Protected Credentials
Jul 11, 2019
CVSS 8.8
EPSS 0.02