Lucene search

CVE-2017-1000391

🗓️ 26 Jan 2018 02:00:29Reported by mitreType

Jenkins versions 2.88 and earlier and 2.73.2 and earlier stores metadata related to 'people', potentially resulting in overwriting of configuration files

Reporter	Title	Published	Views	Family All 11
OSV	Improper Input Validation in Jenkins	14 May 202201:04	–	osv
OSV	CVE-2017-1000391	26 Jan 201802:29	–	osv
RedhatCVE	CVE-2017-1000391	23 Nov 201711:49	–	redhatcve
Prion	Design/Logic Flaw	26 Jan 201802:29	–	prion
Cvelist	CVE-2017-1000391	26 Jan 201802:00	–	cvelist
UbuntuCve	CVE-2017-1000391	26 Jan 201800:00	–	ubuntucve
NVD	CVE-2017-1000391	26 Jan 201802:29	–	nvd
Github Security Blog	Improper Input Validation in Jenkins	14 May 202201:04	–	github
Tenable Nessus	Jenkins < 2.73.3 / 2.89 Multiple Vulnerabilities	16 Nov 201700:00	–	nessus
OpenVAS	Jenkins Multiple Vulnerabilities (Nov 2017) - Windows	7 Nov 201700:00	–	openvas

Nvd

Node

jenkins jenkinsRange≤2.73.2lts

jenkins jenkinsRange≤2.88-

Source	Link
jenkins	www.jenkins.io/security/advisory/2017-11-08/
securityfocus	www.securityfocus.com/bid/101773

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Jan 2018 02:29Current

7High risk

Vulners AI Score7

CVSS24.9

CVSS37.3

EPSS0.00081

CWE-20