jenkins
1,798 tracked vulnerabilities.
CVE-2017-1000095
MEDIUM
Jenkins Script Security < 1.29.1 - Sandbox Bypass via DefaultGroovyMethods Whitelist
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-1000094
MEDIUM
Docker Commons Plugin - Info Disclosure
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-1000093
HIGH
Poll SCM Plugin < 1.3.1 - Cross-Site Request Forgery via API
Oct 05, 2017
CVSS 8.8
EPSS 0.01
CVE-2017-1000092
HIGH
Jenkins Git Plugin - Cross-Site Request Forgery via Form Validation
Oct 05, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-1000091
MEDIUM
GitHub Branch Source Plugin - Cross-Site Request Forgery via Form Validation
Oct 05, 2017
CVSS 6.3
EPSS 0.01
CVE-2017-1000090
HIGH
Role-based Authorization Strategy Plugin - CSRF
Oct 05, 2017
CVSS 8.8
EPSS 0.01
CVE-2017-1000089
MEDIUM
Jenkins Pipeline < 2.5 and pipeline-build-step < 2.5.1 - Unauthenticated Arbitrary Project Triggering
Oct 05, 2017
CVSS 5.3
EPSS 0.01
CVE-2017-1000088
MEDIUM
Sidebar Link Plugin < 1.8 - Stored Cross-Site Scripting via Sidebar Link Configuration
Oct 05, 2017
CVSS 5.4
EPSS 0.01
CVE-2017-1000087
MEDIUM
GitHub Branch Source - Info Disclosure
Oct 05, 2017
CVSS 4.3
EPSS 0.01
CVE-2017-1000086
HIGH
Periodic Backup Plugin - Privilege Escalation & CSRF
Oct 05, 2017
CVSS 8.0
EPSS 0.01
CVE-2017-1000085
MEDIUM
Subversion Plugin - Info Disclosure
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-1000084
MEDIUM
Jenkins Parameterized Trigger Plugin - Unauthenticated Arbitrary Project Triggering
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-1000362
CRITICAL
Jenkins 1.498-2.32.1 - Unprotected Sensitive Data Exposure via Re-key Admin Monitor Backups
Jul 17, 2017
CVSS 9.8
EPSS 0.02
CVE-2016-4988
MEDIUM
Jenkins Build Failure Analyzer < 1.16.0 - Cross-Site Scripting
Feb 09, 2017
CVSS 6.1
EPSS 0.01
CVE-2016-4987
MEDIUM
Jenkins Image Gallery < 1.4 - Path Traversal
Feb 09, 2017
CVSS 6.5
EPSS 0.03
CVE-2016-4986
HIGH
Jenkins Tap < 1.25 - Path Traversal
Feb 09, 2017
CVSS 7.5
EPSS 0.03
CVE-2016-3102
HIGH
Jenkins Script Security Plugin < 1.18.1 - Sandbox Bypass via Direct Field Access or Array Operations
Feb 09, 2017
CVSS 7.3
EPSS 0.02
CVE-2016-3101
MEDIUM
Jenkins Extra Columns < 1.17 - Cross-Site Scripting via Unfiltered Tooltip Markup
Feb 09, 2017
CVSS 5.4
EPSS 0.01
CVE-2016-9299
CRITICAL
NUCLEI
Jenkins < 2.32 and LTS < 2.19.3 - Remote Code Execution via LDAP Query Injection
Jan 12, 2017
CVSS 9.8
EPSS 0.97
CVE-2016-3727
MEDIUM
Jenkins <2.3, <1.651.2 - Info Disclosure
May 17, 2016
CVSS 4.3
EPSS 0.02
CVE-2016-3726
HIGH
Jenkins <2.3, <1.651.2 - Open Redirect
May 17, 2016
CVSS 7.4
EPSS 0.02
CVE-2016-3725
MEDIUM
Jenkins <2.3 & LTS <1.651.2 - Privilege Escalation
May 17, 2016
CVSS 4.3
EPSS 0.02
CVE-2016-3724
MEDIUM
Jenkins <2.3 & LTS <1.651.2 - Info Disclosure
May 17, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-3723
MEDIUM
Jenkins <2.3 & LTS <1.651.2 - Info Disclosure
May 17, 2016
CVSS 4.3
EPSS 0.02
CVE-2016-3722
MEDIUM
Jenkins < 2.3 and LTS < 1.651.2 - Authenticated Denial of Service via Full Name Edit
May 17, 2016
CVSS 4.3
EPSS 0.02
Products
jenkins 267
pipeline\ 40
script_security 35
active_directory 12
blue_ocean 11
email_extension 11
git 11
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
credentials_binding 8
github_branch_source 8
ns-nd_integration_performance_publisher 8
html_publisher 7
job_configuration_history 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
git_client 6
git_parameter 6
github 6
github_pull_request_builder 6
Quick Filters