jenkins
1,798 tracked vulnerabilities.
CVE-2024-34146
MEDIUM
Jenkins Git server Plugin <114.v068a_c7cc2574 - Privilege Escalation
May 02, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-34145
HIGH
Jenkins Script Security Plugin <1335.vf07d9ce377a_e - RCE
May 02, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-34144
CRITICAL
Jenkins Script Security Plugin <=1335.vf07d9ce377a_e - Sandbox Bypass
May 02, 2024
CVSS 9.8
EPSS 0.48
CVE-2024-2216
HIGH
Jenkins docker-build-step Plugin <2.11 - Privilege Escalation
Mar 06, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-2215
MEDIUM
Jenkins docker-build-step Plugin <2.11 - CSRF
Mar 06, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-28162
MEDIUM
Jenkins Delphix Plugin 3.0.1-3.1.0 - Improper Certificate Validation in Data Control Tower Connections
Mar 06, 2024
CVSS 4.2
EPSS 0.00
CVE-2024-28161
MEDIUM
Jenkins Delphix Plugin 3.0.1 - Improper Certificate Validation
Mar 06, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-28160
HIGH
Jenkins iceScrum Plugin < 1.1.6 - Stored Cross-Site Scripting via Project URL
Mar 06, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-28159
MEDIUM
Jenkins Subversion Partial Release Manager Plugin <= 1.0.1 - Missing Authorization
Mar 06, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-28158
MEDIUM
Jenkins Subversion Partial Release Manager Plugin < 1.0.1 - Cross-Site Request Forgery
Mar 06, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-28157
HIGH
Jenkins GitBucket Plugin <= 0.8 - Stored Cross-Site Scripting in Build Views
Mar 06, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-28156
MEDIUM
Jenkins Build Monitor View Plugin < 1.14-860.vd06ef2568b_3f - Stored Cross-Site Scripting via Unescaped View Names
Mar 06, 2024
CVSS 5.4
EPSS 0.80
CVE-2024-28155
MEDIUM
Jenkins AppSpider Plugin <= 1.0.16 - Missing Authorization in HTTP Endpoints
Mar 06, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-28154
MEDIUM
Jenkins MQ Notifier Plugin < 1.4.1 - Sensitive Information Exposure in Build Logs
Mar 06, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-28153
MEDIUM
Jenkins OWASP Dependency-Check Plugin < 5.4.6 - Stored Cross-Site Scripting via Unescaped Vulnerability Metadata
Mar 06, 2024
CVSS 5.4
EPSS 0.01
CVE-2024-28152
MEDIUM
Jenkins Bitbucket Branch Source Plugin <866.vdea_7dcd3008e - Info D...
Mar 06, 2024
CVSS 6.3
EPSS 0.01
CVE-2024-28151
MEDIUM
Jenkins HTML Publisher Plugin <= 1.32 - Path Traversal via Symbolic Link Handling
Mar 06, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-28150
MEDIUM
Jenkins HTML Publisher Plugin < 1.32.1 - Stored Cross-Site Scripting via Job Names and Report Titles
Mar 06, 2024
CVSS 4.7
EPSS 0.01
CVE-2024-28149
MEDIUM
Jenkins HTML Publisher Plugin 1.16-1.32 - Cross-Site Scripting via Improper Input Sanitization
Mar 06, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-23905
MEDIUM
Jenkins Red Hat Dependency Analytics Plugin < 0.7.1 - Stored Cross-Site Scripting via Disabled Content-Security-Policy
Jan 24, 2024
CVSS 5.4
EPSS 0.01
CVE-2024-23904
HIGH
Jenkins Log Command Plugin < 1.0.2 - Unauthenticated Arbitrary File Read via Command Parser
Jan 24, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-23903
MEDIUM
Jenkins GitLab Branch Source Plugin <684 - Info Disclosure
Jan 24, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-23902
MEDIUM
Jenkins GitLab Branch Source Plugin < 684.vea_fa_7c1e2fe3 - Cross-Site Request Forgery
Jan 24, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-23901
MEDIUM
Jenkins GitLab Branch Source Plugin <684 - Info Disclosure
Jan 24, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-23900
MEDIUM
Jenkins Matrix Project Plugin <822.v01b_8c85d16d2 - Privilege Escal...
Jan 24, 2024
CVSS 4.3
EPSS 0.01
Products
jenkins 267
pipeline\ 40
script_security 35
active_directory 12
blue_ocean 11
email_extension 11
git 11
build_failure_analyzer 9
config_file_provider 9
configuration_as_code 9
credentials_binding 8
github_branch_source 8
ns-nd_integration_performance_publisher 8
html_publisher 7
job_configuration_history 7
kubernetes 7
openid_connect_authentication 7
openshift_deployer 7
rundeck 7
subversion 7
amazon_ec2 6
azure_ad 6
azure_vm_agents 6
deployment_dashboard 6
electricflow 6
gerrit_trigger 6
git_client 6
git_parameter 6
github 6
github_pull_request_builder 6
Quick Filters