Lucene search

CVE-2020-2294

🗓️ 08 Oct 2020 12:28:40Reported by jenkinsType

Jenkins Maven Cascade Release Plugin 1.3.2 allows unauthenticated attackers to start and configure build

Reporter	Title	Published	Views	Family All 6
OSV	CVE-2020-2294	8 Oct 202013:15	–	osv
OSV	Missing permission checks in Jenkins Maven Cascade Release Plugin	24 May 202217:30	–	osv
NVD	CVE-2020-2294	8 Oct 202013:15	–	nvd
Github Security Blog	Missing permission checks in Jenkins Maven Cascade Release Plugin	24 May 202217:30	–	github
Prion	Design/Logic Flaw	8 Oct 202013:15	–	prion
CVE	CVE-2020-2294	8 Oct 202013:15	–	cve

[
  {
    "product": "Jenkins Maven Cascade Release Plugin",
    "vendor": "Jenkins project",
    "versions": [
      {
        "lessThanOrEqual": "1.3.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 1.3.2",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
jenkins	www.jenkins.io/security/advisory/2020-10-08/
openwall	www.openwall.com/lists/oss-security/2020/10/08/5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Oct 2020 12:40Current

6.4Medium risk

Vulners AI Score6.4

EPSS0.0005