Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD549A2771-49CC-11E4-AE2C-C80AA9043978
HistoryOct 01, 2014 - 12:00 a.m.

jenkins -- remote execution, privilege escalation, XSS, password exposure, ACL hole, DoS

2014-10-0100:00:00
vuxml.freebsd.org
19

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.027 Low

EPSS

Percentile

90.4%

JSON

Jenkins Security Advisory:

Please reference CVE/URL list for details

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchjenkins< 1.583UNKNOWN
FreeBSDanynoarchjenkins-lts< 1.565.3UNKNOWN

Related

nessus 8
openvas 6
archlinux 1
veracode 21
redhat 5
cve 13
prion 13
github 8
ubuntucve 11
osv 8
suse 1
f5 3
checkpoint_advisories 1
debian 2
securityvulns 4
ubuntu 1
debiancve 2
ibm 7
oracle 3
nessus
nessus
FreeBSD : jenkins -- remote execution, privilege escalation, XSS, password exposure, ACL hole, DoS (549a2771-49cc-11e4-ae2c-c80aa9043978)
2014-10-02 00:00:00
Jenkins < 1.583 / 1.565.3 and Jenkins Enterprise 1.532.x / 1.554.x / 1.565.x < 1.532.10.1 / 1.554.10.1 / 1.565.3.1 Multiple Vulnerabilities
2014-11-04 00:00:00
RHEL 7 : openshift (RHSA-2016:0070)
2018-12-06 00:00:00
openvas
openvas
Jenkins Multiple Vulnerabilities (Oct 2014) - Linux
2016-08-05 00:00:00
Jenkins Multiple Vulnerabilities (Oct 2014) - Windows
2015-12-21 00:00:00
Debian Security Advisory DSA 2827-1 (libcommons-fileupload-java - arbitrary file upload via deserialization)
2013-12-24 00:00:00
archlinux
archlinux
jenkins: multiple issues
2014-10-02 00:00:00
veracode
veracode
Path Traversal
2019-05-02 05:21:26
Man-In-The-Middle (MitM)
2019-05-02 05:21:35
XML External Entity (XXE)
2019-05-02 05:21:23
redhat
redhat
(RHSA-2016:0070) Important: Red Hat OpenShift Enterprise 3.1.1 bug fix and enhancement update
2016-01-26 19:01:15
(RHSA-2013:1429) Important: jakarta-commons-fileupload security update
2013-10-15 18:30:11
(RHSA-2013:1428) Important: jakarta-commons-fileupload security update
2013-10-15 00:00:00
cve
cve
CVE-2014-3678
2014-10-10 14:55:00
CVE-2014-3666
2014-10-16 19:55:00
CVE-2014-3662
2014-10-16 19:55:00
prion
prion
Cross site scripting
2014-10-10 14:55:00
Default credentials
2014-10-16 19:55:00
Directory traversal
2014-10-15 14:55:00
github
github
Jenkins Exposure of Sensitive Information to an Unauthorized Actor vulnerability
2022-05-17 03:53:31
Jenkins Exposure of Sensitive Information to an Unauthorized Actor vulnerability
2022-05-17 03:53:35
Jenkins Path Traversal vulnerability
2022-05-17 01:24:36
ubuntucve
ubuntucve
CVE-2014-3666
2014-10-16 00:00:00
CVE-2014-3664
2014-10-15 00:00:00
CVE-2014-3680
2014-10-16 00:00:00
osv
osv
Jenkins Cross-site Scripting vulnerability
2022-05-14 01:48:04
Jenkins Exposure of Sensitive Information to an Unauthorized Actor vulnerability
2022-05-17 03:53:35
Jenkins Path Traversal vulnerability
2022-05-17 01:24:36
suse
suse
Security update for jakarta-commons-fileupload (important)
2013-11-12 19:04:18
f5
f5
K63443590 : Apache Commons FileUpload vulnerability CVE-2013-2186
2016-01-21 00:00:00
SOL63443590 - Apache Commons FileUpload vulnerability CVE-2013-2186
2016-01-21 00:00:00
K48758740 : Apache Tomcat vulnerability CVE-2013-2185
2020-01-30 00:00:00
checkpoint_advisories
checkpoint_advisories
Oracle WebLogic Server Apache-Commons-FileUpload Library Insecure Deserialization (CVE-2013-2186)
2016-08-14 00:00:00
debian
debian
[SECURITY] [DSA 2827-1] libcommons-fileupload-java security update
2013-12-24 05:38:15
[SECURITY] [DSA 2827-1] libcommons-fileupload-java security update
2013-12-24 05:38:34
securityvulns
securityvulns
[USN-2029-1] Apache Commons FileUpload vulnerability
2013-12-09 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2013-12-09 00:00:00
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-01-25 00:00:00
ubuntu
ubuntu
Apache Commons FileUpload vulnerability
2013-11-13 00:00:00
debiancve
debiancve
CVE-2013-2186
2013-10-28 21:55:00
CVE-2014-1869
2014-02-08 00:55:00
ibm
ibm
Security Bulletin: Multiple Apache Commons FileUpload vulnerabilities affects IBM Tivoli Business Service Manager (CVE-2014-0034, CVE-2014-0050, CVE-2013-2186, CVE-2016-3092)
2021-11-07 05:55:47
Security Bulletin: A vulnerability in Apache Commons Fileupload affects IBM Tivoli Business Service Manager (CVE-2013-2186, CVE-2013-0248, CVE-2016-3092, CVE-2014-0050, 220723)
2022-09-26 05:34:17
Security Bulletin: Multiple vulnerabilities in Apache Commons FileUpload affect IBM Application Performance Management products
2023-09-25 09:03:43
oracle
oracle
Oracle Critical Patch Update Advisory - January 2015
2015-03-10 00:00:00
Oracle Critical Patch Update Advisory - July 2015
2015-07-14 00:00:00
Oracle Critical Patch Update - January 2016
2016-01-19 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.027 Low

EPSS

Percentile

90.4%

JSON
Related for 549A2771-49CC-11E4-AE2C-C80AA9043978
nessus8openvas6archlinux1veracode21redhat5cve13prion13github8ubuntucve11osv8suse1f53checkpoint_advisories1debian2securityvulns4ubuntu1debiancve2ibm7oracle3