Lucene search
RedhatCVELIST:CVE-2017-2603HistoryMay 15, 2018 - 9:00 p.m.
CVE-2017-2603
2018-05-1521:00:00
CWE-325
redhat
www.cve.org
4
CVSS3
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N
AI Score
4.2
Confidence
High
EPSS
0.001
Percentile
40.3%
Jenkins before versions 2.44, 2.32.2 is vulnerable to a user data leak in disconnected agents’ config.xml API. This could leak sensitive data such as API tokens (SECURITY-362).
CNA Affected
[
{
"product": "jenkins",
"vendor": "[UNKNOWN]",
"versions": [
{
"status": "affected",
"version": "jenkins 2.44"
},
{
"status": "affected",
"version": "jenkins 2.32.2"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2017-2603
2018-05-15 00:00:00
github
github
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
2022-05-13 01:36:54
osv
osv
CVE-2017-2603
2018-05-15 21:29:00
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
2022-05-13 01:36:54
redhatcve
redhatcve
CVE-2017-2603
2017-02-02 15:21:15
prion
prion
Design/Logic Flaw
2018-05-15 21:29:00
cve
cve
CVE-2017-2603
2018-05-15 21:29:00
nvd
nvd
CVE-2017-2603
2018-05-15 21:29:00
nessus
nessus
freebsd
freebsd
jenkins -- multiple vulnerabilities
2017-02-01 00:00:00
openvas
openvas
Jenkins Multiple Vulnerabilities (Feb 2017) - Linux
2017-03-13 00:00:00
Jenkins Multiple Vulnerabilities (Feb 2017) - Windows
2017-03-13 00:00:00
CVSS3
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N
AI Score
4.2
Confidence
High
EPSS
0.001
Percentile
40.3%
Related for CVELIST:CVE-2017-2603