Lucene search

[email protected]CVE-2013-0158

HistoryFeb 24, 2013 - 10:55 p.m.

CVE-2013-0158

2013-02-2422:55:01

[email protected]

web.nvd.nist.gov

cve-2013-0158

jenkins

vulnerability

security

nvd

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

6.1 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.4%

JSON

Unspecified vulnerability in Jenkins before 1.498, Jenkins LTS before 1.480.2, and Jenkins Enterprise 1.447.x before 1.447.6.1 and 1.466.x before 1.466.12.1, when a slave is attached and anonymous read access is enabled, allows remote attackers to obtain the master cryptographic key via unknown vectors.

Affected configurations

NVD

Node

cloudbeesjenkinsRange≤1.480.3.1

jenkinsjenkinsMatch1.400

jenkinsjenkinsMatch1.401

jenkinsjenkinsMatch1.402

jenkinsjenkinsMatch1.403

jenkinsjenkinsMatch1.404

jenkinsjenkinsMatch1.405

jenkinsjenkinsMatch1.406

jenkinsjenkinsMatch1.407

jenkinsjenkinsMatch1.408

jenkinsjenkinsMatch1.409

jenkinsjenkinsMatch1.410

jenkinsjenkinsMatch1.411

jenkinsjenkinsMatch1.412

jenkinsjenkinsMatch1.413

jenkinsjenkinsMatch1.414

jenkinsjenkinsMatch1.415

jenkinsjenkinsMatch1.416

jenkinsjenkinsMatch1.417

jenkinsjenkinsMatch1.418

jenkinsjenkinsMatch1.419

jenkinsjenkinsMatch1.420

jenkinsjenkinsMatch1.421

jenkinsjenkinsMatch1.422

jenkinsjenkinsMatch1.423

jenkinsjenkinsMatch1.424

jenkinsjenkinsMatch1.425

jenkinsjenkinsMatch1.426

jenkinsjenkinsMatch1.427

jenkinsjenkinsMatch1.428

jenkinsjenkinsMatch1.429

jenkinsjenkinsMatch1.430

jenkinsjenkinsMatch1.431

jenkinsjenkinsMatch1.432

jenkinsjenkinsMatch1.433

jenkinsjenkinsMatch1.434

jenkinsjenkinsMatch1.435

jenkinsjenkinsMatch1.436

jenkinsjenkinsMatch1.437

Node

cloudbeesjenkinsMatch1.466.1.2-enterprise

cloudbeesjenkinsMatch1.466.2.1-enterprise

Node

cloudbeesjenkinsMatch1.400-lts

cloudbeesjenkinsMatch1.424-lts

cloudbeesjenkinsMatch1.447-lts

jenkinsjenkinsRange≤1.466.2

jenkinsjenkinsMatch1.409.1

jenkinsjenkinsMatch1.409.2

jenkinsjenkinsMatch1.409.3

jenkinsjenkinsMatch1.424.1

jenkinsjenkinsMatch1.424.2

jenkinsjenkinsMatch1.424.3

jenkinsjenkinsMatch1.424.4

jenkinsjenkinsMatch1.424.5

jenkinsjenkinsMatch1.424.6

jenkinsjenkinsMatch1.447.1

jenkinsjenkinsMatch1.447.2

jenkinsjenkinsMatch1.466.1

Node

cloudbeesjenkinsMatch1.447.1.1-enterprise

cloudbeesjenkinsMatch1.447.2.2-enterprise

cloudbeesjenkinsMatch1.447.3.1-enterprise

CPENameOperatorVersion
cloudbees:jenkinscloudbees jenkinsle1.480.3.1
jenkins:jenkinsjenkinseq1.400
jenkins:jenkinsjenkinseq1.401
jenkins:jenkinsjenkinseq1.402
jenkins:jenkinsjenkinseq1.403
jenkins:jenkinsjenkinseq1.404
jenkins:jenkinsjenkinseq1.405
jenkins:jenkinsjenkinseq1.406
jenkins:jenkinsjenkinseq1.407
jenkins:jenkinsjenkinseq1.408

CPE	Name	Operator	Version
cloudbees:jenkins	cloudbees jenkins	le	1.480.3.1
jenkins:jenkins	jenkins	eq	1.400
jenkins:jenkins	jenkins	eq	1.401
jenkins:jenkins	jenkins	eq	1.402
jenkins:jenkins	jenkins	eq	1.403
jenkins:jenkins	jenkins	eq	1.404
jenkins:jenkins	jenkins	eq	1.405
jenkins:jenkins	jenkins	eq	1.406
jenkins:jenkins	jenkins	eq	1.407
jenkins:jenkins	jenkins	eq	1.408