CVE-2018-1000192

🗓️ 05 Jun 2018 21:00:29Reported by [email protected]Type

A vulnerability in Jenkins 2.120 and older allows users to view all installed plugin

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 11
RedhatCVE	CVE-2018-1000192	6 Jun 201806:19	–	redhatcve
OSV	GHSA-2W4X-RXP7-GRG7 Exposure of Sensitive Information to an Unauthorized Actor in Jenkins	13 May 202201:01	–	osv
OSV	CVE-2018-1000192	5 Jun 201821:29	–	osv
CVE	CVE-2018-1000192	5 Jun 201821:29	–	cve
Cvelist	CVE-2018-1000192	5 Jun 201821:00	–	cvelist
Prion	Information disclosure	5 Jun 201821:29	–	prion
Github Security Blog	Exposure of Sensitive Information to an Unauthorized Actor in Jenkins	13 May 202201:01	–	github
OpenVAS	Jenkins < 2.121 and < 2.107.3 LTS Multiple Vulnerabilities - Linux	7 Jun 201800:00	–	openvas
OpenVAS	Jenkins < 2.121 and < 2.107.3 LTS Multiple Vulnerabilities - Windows	7 Jun 201800:00	–	openvas
Tenable Nessus	Jenkins < 2.121 / < 2.107.3 (LTS) Multiple Vulnerabilities	5 Jun 201900:00	–	nessus

Nvd

Node

jenkins jenkinsRange≤2.120

Node

jenkins jenkinsRange≤2.107.2lts

Node

oracle communications_cloud_native_core_automated_test_suiteMatch1.9.0

Source	Link
jenkins	www.jenkins.io/security/advisory/2018-05-09/
oracle	www.oracle.com/security-alerts/cpuapr2022.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Jun 2018 21:29Current

5.4Medium risk

Vulners AI Score5.4

CVSS24

CVSS34.3

EPSS0.00522