Lucene search

CVE-2017-1000504

🗓️ 24 Jan 2018 23:00:29Reported by mitreType

CVE-2017-1000504: Jenkins 2.94 and earlier; 2.89.1 and earlier startup race condition

Reporter	Title	Published	Views	Family All 10
OSV	CVE-2017-1000504	24 Jan 201823:29	–	osv
OSV	Cross-Site Request Forgery in Jenkins	14 May 202201:04	–	osv
RedhatCVE	CVE-2017-1000504	29 Jan 201802:20	–	redhatcve
Prion	Race condition	24 Jan 201823:29	–	prion
NVD	CVE-2017-1000504	24 Jan 201823:29	–	nvd
OpenVAS	Jenkins CSRF Protection Delay Vulnerability - Linux	29 Jan 201800:00	–	openvas
OpenVAS	Jenkins CSRF Protection Delay Vulnerability - Windows	29 Jan 201800:00	–	openvas
Cvelist	CVE-2017-1000504	24 Jan 201823:00	–	cvelist
Github Security Blog	Cross-Site Request Forgery in Jenkins	14 May 202201:04	–	github
Tenable Nessus	Jenkins < 2.89.2 / 2.95 Multiple Vulnerabilities	1 Feb 201800:00	–	nessus

Nvd

Node

jenkins jenkinsRange≤2.89.1lts

jenkins jenkinsRange≤2.94-

Source	Link
jenkins	www.jenkins.io/security/advisory/2017-12-14/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jan 2018 23:29Current

8.2High risk

Vulners AI Score8.2

CVSS26.8

CVSS38.1

EPSS0.02387

CWE-352