org.jenkins-ci.plugins

1,035 tracked vulnerabilities.

CVE-2019-16547 MEDIUM
Jenkins Google Compute Engine Plugin <4.1.1 - Info Disclosure
Nov 21, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-16546 MEDIUM
Jenkins Google Compute Engine Plugin <4.1.1 - Man-in-the-middle
Nov 21, 2019
CVSS 5.9
EPSS 0.01
CVE-2019-16545 MEDIUM
Jenkins QMetry for JIRA - Test Management Plugin - Info Disclosure
Nov 21, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-16544 HIGH
Jenkins QMetry for JIRA - Test Mgmt Plugin <1.12 - Info Disclosure
Nov 21, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-16542 MEDIUM
Jenkins Anchore Container Image Scanner Plugin <1.0.19 - Info Discl...
Nov 21, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-16541 CRITICAL
Jenkins JIRA Plugin <3.0.10 - Privilege Escalation
Nov 21, 2019
CVSS 9.9
EPSS 0.02
CVE-2019-16540 MEDIUM
Jenkins Support Core Plugin <2.63 - Path Traversal
Nov 21, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-16539 MEDIUM
Jenkins Support Core Plugin <2.63 - Privilege Escalation
Nov 21, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-16538 HIGH
Jenkins Script Security Plugin <1.67 - RCE
Nov 21, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10476 HIGH
Jenkins Zulip Plugin < 1.1.0 - Insufficiently Protected Credentials
Oct 23, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-10475 MEDIUM NUCLEI
Jenkins build-metrics < 1.3 - Reflected Cross-Site Scripting
Oct 23, 2019
CVSS 6.1
EPSS 0.58
CVE-2019-10474 MEDIUM
Jenkins Global Post Script Plugin < 1.1.4 - Unauthenticated Information Disclosure via Script Listing
Oct 23, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10473 MEDIUM
Jenkins Libvirt Slaves Plugin < 1.8.5 - Unauthenticated Credential ID Enumeration via Form Methods
Oct 23, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10472 MEDIUM
Jenkins Libvirt Slaves Plugin < 1.8.5 - Missing Permission Check for SSH Credential Capture
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10471 HIGH
Jenkins Libvirt Slaves Plugin < 1.8.5 - Cross-Site Request Forgery
Oct 23, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10467 MEDIUM
Jenkins Sonar Gerrit Plugin < 2.3 - Insufficiently Protected Credentials in Job Config
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10465 MEDIUM
Jenkins Deploy WebLogic Plugin < 4.1 - Server-Side Request Forgery and Information Disclosure via URL Connection
Oct 23, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10464 HIGH
Jenkins Deploy WebLogic Plugin < 4.1 - Cross-Site Request Forgery
Oct 23, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10463 MEDIUM
Jenkins Dynatrace Application Monitoring < 2.1.4 - Incorrect Default Permissions
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10462 HIGH
Jenkins Dynatrace Application Monitoring < 2.1.3 - Cross-Site Request Forgery
Oct 23, 2019
CVSS 8.1
EPSS 0.01
CVE-2019-10461 HIGH
Jenkins Dynatrace Application Monitoring < 2.1.3 - Insufficiently Protected Credentials
Oct 23, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-10460 HIGH
Jenkins Bitbucket OAuth Plugin < 0.9 - Unprotected Credential Storage in config.xml
Oct 23, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-10459 MEDIUM
Jenkins Mattermost Notification Plugin < 2.7.0 - Insufficiently Protected Credentials in Global Configuration
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10457 MEDIUM
Jenkins Oracle Cloud Infrastructure Compute Classic Plugin < 1.0.0 - Missing Authorization
Oct 16, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10456 MEDIUM
Jenkins Oracle Cloud Infrastructure Compute Classic Plugin < 1.0.0 - Cross-Site Request Forgery
Oct 16, 2019
CVSS 4.3
EPSS 0.01