jenkins
1,755 tracked vulnerabilities.
CVE-2015-5322
Jenkins <1.638-1.625.2 - Path Traversal
Nov 25, 2015
EPSS 0.00
CVE-2015-5321
Jenkins <1.638, <1.625.2 - Info Disclosure
Nov 25, 2015
EPSS 0.00
CVE-2015-5320
Jenkins <1.638-1.625.2 - Info Disclosure
Nov 25, 2015
EPSS 0.00
CVE-2015-5319
OpenShift < 3.1 - XML External Entity Injection via create-job CLI Command
Nov 25, 2015
EPSS 0.00
CVE-2015-5318
Jenkins <1.638-1.625.2 - CSRF Bypass
Nov 25, 2015
EPSS 0.00
CVE-2015-5317
HIGH
KEV
Jenkins <1.638-1.625.2 - Info Disclosure
Nov 25, 2015
CVSS 7.5
EPSS 0.40
CVE-2015-1814
Jenkins < 1.606 and LTS < 1.596.2 - Unauthenticated Privilege Escalation via Forced API Token Change
Oct 16, 2015
EPSS 0.00
CVE-2015-1813
Jenkins < 1.606 and LTS < 1.596.2 - Cross-Site Scripting
Oct 16, 2015
EPSS 0.00
CVE-2015-1812
Jenkins < 1.606 and LTS < 1.596.2 - Cross-Site Scripting
Oct 16, 2015
EPSS 0.00
CVE-2015-1810
Jenkins < 1.580.3 - Access Control
Oct 16, 2015
EPSS 0.00
CVE-2015-1808
Jenkins < 1.600 and LTS < 1.596.1 - Authenticated Denial of Service via Crafted Update Center Data
Oct 16, 2015
EPSS 0.00
CVE-2015-1807
Jenkins < 1.600 and LTS < 1.596.1 - Authenticated Path Traversal via Symlink
Oct 16, 2015
EPSS 0.00
CVE-2015-1806
Jenkins < 1.600 and LTS < 1.596.1 - Authenticated Remote Code Execution via Combination Filter Groovy Script
Oct 16, 2015
EPSS 0.01
CVE-2014-9635
MEDIUM
Jenkins < 1.586 - Session Cookie Information Disclosure via Missing HttpOnly Flag
Sep 12, 2017
CVSS 5.3
EPSS 0.01
CVE-2014-9634
MEDIUM
Jenkins < 1.586 - Session Cookie Secure Flag Not Set
Sep 12, 2017
CVSS 5.3
EPSS 0.01
CVE-2014-3665
Jenkins < 1.587 and LTS < 1.580.1 - Remote Code Execution via Slave to Master Access Control
Nov 25, 2015
EPSS 0.00
CVE-2014-2068
CloudBees Jenkins <1.551, <1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.00
CVE-2014-2066
Jenkins <1.551-1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.00
CVE-2014-2065
Jenkins < 1.551 and LTS < 1.532.2 - Cross-Site Scripting via IconSize Cookie
Oct 17, 2014
EPSS 0.00
CVE-2014-2064
Jenkins <1.551, <1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.00
CVE-2014-2063
Jenkins < 1.551 and LTS < 1.532.2 - Clickjacking
Oct 17, 2014
EPSS 0.00
CVE-2014-2062
Jenkins <1.551-LTS <1.532.2 - Auth Bypass
Oct 17, 2014
EPSS 0.00
CVE-2014-2061
Jenkins <1.551-1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.00
CVE-2014-2060
Jenkins <1.551-1.532.2 - Session Hijacking
Oct 17, 2014
EPSS 0.00
CVE-2014-2058
Jenkins <1.551, <1.532.2 - Auth Bypass
Oct 17, 2014
EPSS 0.00
Products
jenkins 259
pipeline\ 37
script_security 33
blue_ocean 11
git 11
email_extension 10
active_directory 9
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
ns-nd_integration_performance_publisher 8
credentials_binding 7
github_branch_source 7
html_publisher 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
github 6
github_pull_request_builder 6
gitlab 6
google_compute_engine 6
hashicorp_vault 6
Quick Filters