Lucene search
GoogleOSV:BIT-JENKINS-2023-27903HistoryMar 06, 2024 - 10:55 a.m.
BIT-jenkins-2023-27903
2024-03-0610:55:57
Google
osv.dev
10
jenkins
temporary file
vulnerability
file system
access
controller
software
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier creates a temporary file in the default temporary directory with the default permissions for newly created files when uploading a file parameter through the CLI, potentially allowing attackers with access to the Jenkins controller file system to read and write the file before it is used.
Related
cvelist
cvelist
CVE-2023-27903
2023-03-08 17:14:52
cve
cve
CVE-2023-27903
2023-03-10 21:15:15
cgr
cgr
CVE-2023-27903 vulnerabilities
2024-05-19 03:07:16
redhatcve
redhatcve
CVE-2023-27903
2023-03-13 08:43:16
osv
osv
Incorrect Authorization in Jenkins Core
2023-03-10 21:30:19
CVE-2023-27903
2023-03-10 21:15:15
alpinelinux
alpinelinux
CVE-2023-27903
2023-03-10 21:15:00
prion
prion
Design/Logic Flaw
2023-03-10 21:15:00
wolfi
wolfi
CVE-2023-27903 vulnerabilities
2024-05-25 09:24:45
github
github
Incorrect Authorization in Jenkins Core
2023-03-10 21:30:19
nessus
nessus
redhat
redhat
openvas
openvas
Jenkins < 2.375.4 (LTS), < 2.394 Multiple Vulnerabilities - Windows
2023-03-09 00:00:00
Jenkins < 2.375.4 (LTS), < 2.394 Multiple Vulnerabilities - Linux
2023-03-09 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2023-03-08 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
4.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
8.7%
Related for OSV:BIT-JENKINS-2023-27903