jenkins
1,798 tracked vulnerabilities.
CVE-2015-1813
Jenkins < 1.606 and LTS < 1.596.2 - Cross-Site Scripting
Oct 16, 2015
EPSS 0.02
CVE-2015-1812
Jenkins < 1.606 and LTS < 1.596.2 - Cross-Site Scripting
Oct 16, 2015
EPSS 0.02
CVE-2015-1810
Jenkins < 1.580.3 - Access Control
Oct 16, 2015
EPSS 0.02
CVE-2015-1808
Jenkins < 1.600 and LTS < 1.596.1 - Authenticated Denial of Service via Crafted Update Center Data
Oct 16, 2015
EPSS 0.02
CVE-2015-1807
Jenkins < 1.600 and LTS < 1.596.1 - Authenticated Path Traversal via Symlink
Oct 16, 2015
EPSS 0.02
CVE-2015-1806
Jenkins < 1.600 and LTS < 1.596.1 - Authenticated Remote Code Execution via Combination Filter Groovy Script
Oct 16, 2015
EPSS 0.03
CVE-2014-9635
MEDIUM
Jenkins < 1.586 - Session Cookie Information Disclosure via Missing HttpOnly Flag
Sep 12, 2017
CVSS 5.3
EPSS 0.03
CVE-2014-9634
MEDIUM
Jenkins < 1.586 - Session Cookie Secure Flag Not Set
Sep 12, 2017
CVSS 5.3
EPSS 0.03
CVE-2014-3665
Jenkins < 1.587 and LTS < 1.580.1 - Remote Code Execution via Slave to Master Access Control
Nov 25, 2015
EPSS 0.03
CVE-2014-2068
CloudBees Jenkins <1.551, <1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.01
CVE-2014-2066
Jenkins <1.551-1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.02
CVE-2014-2065
Jenkins < 1.551 and LTS < 1.532.2 - Cross-Site Scripting via IconSize Cookie
Oct 17, 2014
EPSS 0.02
CVE-2014-2064
Jenkins <1.551, <1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.03
CVE-2014-2063
Jenkins < 1.551 and LTS < 1.532.2 - Clickjacking
Oct 17, 2014
EPSS 0.02
CVE-2014-2062
Jenkins <1.551-LTS <1.532.2 - Auth Bypass
Oct 17, 2014
EPSS 0.02
CVE-2014-2061
Jenkins <1.551-1.532.2 - Info Disclosure
Oct 17, 2014
EPSS 0.02
CVE-2014-2060
Jenkins <1.551-1.532.2 - Session Hijacking
Oct 17, 2014
EPSS 0.02
CVE-2014-2058
Jenkins <1.551, <1.532.2 - Auth Bypass
Oct 17, 2014
EPSS 0.02
CVE-2014-3680
Jenkins < 1.583 and LTS < 1.565.3 - Authenticated Sensitive Information Exposure via Parameterized Job DOM
Oct 16, 2014
EPSS 0.01
CVE-2014-3667
Redhat Openshift < 3.1 - Information Disclosure
Oct 16, 2014
EPSS 0.01
CVE-2014-3666
Redhat Openshift < 3.1 - Code Injection
Oct 16, 2014
EPSS 0.04
CVE-2014-3663
Jenkins < 1.583 and LTS < 1.565.3 - Authenticated Arbitrary Job Creation and Deletion
Oct 16, 2014
EPSS 0.01
CVE-2014-3662
Jenkins < 1.583 and LTS < 1.565.3 - User Enumeration via Login Attempts
Oct 16, 2014
EPSS 0.02
CVE-2014-3661
Redhat Openshift < 3.1 - Resource Management Error
Oct 16, 2014
EPSS 0.02
CVE-2014-3681
Redhat Openshift < 3.1 - XSS
Oct 15, 2014
EPSS 0.02
Products
jenkins 267
pipeline\ 40
script_security 35
active_directory 12
blue_ocean 11
email_extension 11
git 11
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
credentials_binding 8
github_branch_source 8
ns-nd_integration_performance_publisher 8
html_publisher 7
job_configuration_history 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
git_client 6
git_parameter 6
github 6
github_pull_request_builder 6
Quick Filters