Lucene search
K

vSphere Plugin does not validate SSL/TLS certificates

🗓️ 26 Mar 2018 00:00:00Reported by Jenkins Security TeamType 
jenkins
 jenkins
🔗 www.jenkins.io👁 6 Views

The vSphere Plugin previously disabled SSL validation, risking MITM; 2.17 enables it by default.

Related
Detection
ReporterTitlePublishedViews
Family
CVE
CVE-2018-1000151
5 Apr 201813:00
cve
Cvelist
CVE-2018-1000151
5 Apr 201813:00
cvelist
EUVD
EUVD-2022-5407
3 Oct 202520:07
euvd
Github Security Blog
Jenkins vSphere Plugin disables SSL/TLS certificate validation by default
14 May 202203:23
github
NVD
CVE-2018-1000151
5 Apr 201813:29
nvd
OSV
CVE-2018-1000151
5 Apr 201813:29
osv
OSV
GHSA-VQ7P-F4FV-RR5X Jenkins vSphere Plugin disables SSL/TLS certificate validation by default
14 May 202203:23
osv
Prion
Input validation
5 Apr 201813:29
prion
RedhatCVE
CVE-2018-1000151
22 May 202507:19
redhatcve
SUSE CVE
SUSE CVE-2018-1000151
15 Feb 202304:20
susecve
Rows per page
Vulners
Node
jenkinsvsphere-cloudRange<2.17jenkins

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

26 Mar 2018 00:00Current
5.8Medium risk
Vulners AI Score5.8
CVSS 35.6
CVSS 26.8
EPSS0.00425
6