| Reporter | Title | Published | Views | Family All 81 |
|---|---|---|---|---|
| Exploit for CVE-2019-1003000 | 24 Apr 201923:52 | – | githubexploit | |
| Exploit for CVE-2019-1003000 | 15 Feb 201905:59 | – | githubexploit | |
| Exploit for Deserialization of Untrusted Data in Jenkins | 8 May 201913:52 | – | githubexploit | |
| CVE-2018-1000861 | 10 Dec 201800:00 | – | attackerkb | |
| The vulnerability in the function of stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java of the Jenkins Automation Server component allows a hacker to execute arbitrary code. | 4 Aug 202200:00 | – | bdu_fstec | |
| CVE-2018-1000861 | 18 Mar 201912:37 | – | circl | |
| Jenkins Stapler Web Framework Deserialization of Untrusted Data Vulnerability | 10 Feb 202200:00 | – | cisa_kev | |
| CISA Adds 15 Known Exploited Vulnerabilities to Catalog | 10 Feb 202200:00 | – | cisa | |
| CloudBees Jenkins Information Disclosure Vulnerability (CNVD-2019-04442) | 12 Dec 201800:00 | – | cnvd | |
| CloudBees Jenkins Denial of Service Vulnerability (CNVD-2019-23809) | 12 Dec 201800:00 | – | cnvd |
# SPDX-FileCopyrightText: 2018 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.108511");
script_version("2023-07-20T05:05:17+0000");
script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
script_cve_id("CVE-2018-1000861", "CVE-2018-1000862", "CVE-2018-1000863", "CVE-2018-1000864");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2023-07-20 05:05:17 +0000 (Thu, 20 Jul 2023)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-06-13 19:00:00 +0000 (Mon, 13 Jun 2022)");
script_tag(name:"creation_date", value:"2018-12-11 14:42:36 +0100 (Tue, 11 Dec 2018)");
script_name("Jenkins < 2.154 and < 2.138.4 LTS Multiple Vulnerabilities - Linux");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2018 Greenbone AG");
script_family("Web application abuses");
script_dependencies("gb_jenkins_consolidation.nasl", "os_detection.nasl");
script_mandatory_keys("jenkins/detected", "Host/runs_unixoide");
script_xref(name:"URL", value:"https://jenkins.io/security/advisory/2018-12-05/");
script_tag(name:"summary", value:"Jenkins is prone to multiple vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Jenkins is prone to the following vulnerabilities:
- Code execution through crafted URLs (CVE-2018-1000861).
- Forced migration of user records (CVE-2018-1000863).
- Workspace browser allowed accessing files outside the workspace (CVE-2018-1000862).
- Potential denial of service through cron expression form validation (CVE-2018-1000864).");
script_tag(name:"affected", value:"Jenkins LTS up to and including 2.138.3, Jenkins weekly up to and including 2.153.");
script_tag(name:"solution", value:"Upgrade to Jenkins weekly to 2.154 or later / Jenkins LTS to either 2.138.4 or 2.150.1
or later.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"remote_banner_unreliable");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
CPE = "cpe:/a:jenkins:jenkins";
if (!port = get_app_port(cpe: CPE))
exit(0);
if (!infos = get_app_full(cpe: CPE, port:port, exit_no_version: TRUE))
exit(0);
version = infos["version"];
location = infos["location"];
proto = infos["proto"];
if( get_kb_item( "jenkins/" + port + "/is_lts" ) ) {
if ( version_is_less( version:version, test_version:"2.138.4" ) ) {
fix = "2.138.4/2.150.1";
}
} else {
if( version_is_less( version:version, test_version:"2.154" ) ) {
fix = "2.154";
}
}
if( fix ) {
report = report_fixed_ver( installed_version:version, fixed_version:fix, install_path:location );
security_message( port:port, data:report, proto:proto );
exit( 0 );
}
exit( 99 );
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation