Lucene search

CVE-2023-27902

🗓️ 10 Mar 2023 21:15:15Reported by jenkinsType

Jenkins CVE-2023-27902 allows unauthorized access to job workspace directories

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 22
Github Security Blog	Incorrect Permission Preservation in Jenkins Core	10 Mar 202321:30	–	github
AlpineLinux	CVE-2023-27902	10 Mar 202321:15	–	alpinelinux
Cvelist	CVE-2023-27902	8 Mar 202317:14	–	cvelist
Vulnrichment	CVE-2023-27902	8 Mar 202317:14	–	vulnrichment
RedhatCVE	CVE-2023-27902	13 Mar 202308:43	–	redhatcve
NVD	CVE-2023-27902	10 Mar 202321:15	–	nvd
OSV	CVE-2023-27902	10 Mar 202321:15	–	osv
OSV	BIT-JENKINS-2023-27902	6 Mar 202410:56	–	osv
OSV	GHSA-CJ6R-8PXJ-5JV6 Incorrect Permission Preservation in Jenkins Core	10 Mar 202321:30	–	osv
OSV	CGA-F846-FGGC-QM9G	6 Jun 202412:27	–	osv

Nvd

Node

jenkins jenkinsRange<2.375.4lts

jenkins jenkinsRange<2.394-

[
  {
    "defaultStatus": "affected",
    "product": "Jenkins",
    "vendor": "Jenkins Project",
    "versions": [
      {
        "lessThan": "*",
        "status": "unaffected",
        "version": "2.394",
        "versionType": "maven"
      },
      {
        "lessThan": "2.375.*",
        "status": "unaffected",
        "version": "2.375.4",
        "versionType": "maven"
      },
      {
        "lessThan": "2.387.*",
        "status": "unaffected",
        "version": "2.387.1",
        "versionType": "maven"
      }
    ]
  }
]

Source	Link
jenkins	www.jenkins.io/security/advisory/2023-03-08/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Mar 2023 21:15Current

4.5Medium risk

Vulners AI Score4.5

CVSS34.3

EPSS0.0017

SSVC