Lucene search
K

jenkins: Arbitrary file write vulnerability using file parameter definitions

🗓️ 12 Dec 2018 14:16:43Reported by RedHatType 
redhat
 redhat
🔗 access.redhat.com👁 2 Views

Jenkins path traversal allows file write via file parameter definitions for users with access.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
CNVD
Jenkins path traversal vulnerability (CNVD-2019-01085)
10 Jan 201900:00
cnvd
CVE
CVE-2018-1000406
9 Jan 201923:00
cve
Cvelist
CVE-2018-1000406
9 Jan 201923:00
cvelist
EUVD
EUVD-2022-2226
9 Jan 201923:00
euvd
Github Security Blog
Path Traversal in Jenkins
14 May 202201:04
github
Tenable Nessus
Jenkins < 2.138.2 (LTS) / 2.146 Multiple Vulnerabilities
16 Oct 201800:00
nessus
NVD
CVE-2018-1000406
9 Jan 201923:29
nvd
OpenVAS
Jenkins < 2.146 and < 2.138.2 LTS Multiple Vulnerabilities - Linux
11 Dec 201800:00
openvas
OpenVAS
Jenkins < 2.146 and < 2.138.2 LTS Multiple Vulnerabilities - Windows
11 Dec 201800:00
openvas
OSV
GHSA-3PR8-RF62-G893 Path Traversal in Jenkins
14 May 202201:04
osv
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux7ppc64leatomic-enterprise-service-catalog1:3.11.51-1.git.1671.2d16650.el7atomic-enterprise-service-catalog-1:3.11.51-1.git.1671.2d16650.el7.ppc64le.rpm
Red Hat Enterprise Linux7x86_64atomic-enterprise-service-catalog1:3.11.51-1.git.1671.2d16650.el7atomic-enterprise-service-catalog-1:3.11.51-1.git.1671.2d16650.el7.x86_64.rpm
Red Hat Enterprise Linux7ppc64leatomic-enterprise-service-catalog-svcat1:3.11.51-1.git.1671.2d16650.el7atomic-enterprise-service-catalog-svcat-1:3.11.51-1.git.1671.2d16650.el7.ppc64le.rpm
Red Hat Enterprise Linux7x86_64atomic-enterprise-service-catalog-svcat1:3.11.51-1.git.1671.2d16650.el7atomic-enterprise-service-catalog-svcat-1:3.11.51-1.git.1671.2d16650.el7.x86_64.rpm
Red Hat Enterprise Linux7ppc64leatomic-openshift0:3.11.51-1.git.0.1560686.el7atomic-openshift-0:3.11.51-1.git.0.1560686.el7.ppc64le.rpm
Red Hat Enterprise Linux7x86_64atomic-openshift0:3.11.51-1.git.0.1560686.el7atomic-openshift-0:3.11.51-1.git.0.1560686.el7.x86_64.rpm
Red Hat Enterprise Linux7ppc64leatomic-openshift-clients0:3.11.51-1.git.0.1560686.el7atomic-openshift-clients-0:3.11.51-1.git.0.1560686.el7.ppc64le.rpm
Red Hat Enterprise Linux7x86_64atomic-openshift-clients0:3.11.51-1.git.0.1560686.el7atomic-openshift-clients-0:3.11.51-1.git.0.1560686.el7.x86_64.rpm
Red Hat Enterprise Linux7x86_64atomic-openshift-clients-redistributable0:3.11.51-1.git.0.1560686.el7atomic-openshift-clients-redistributable-0:3.11.51-1.git.0.1560686.el7.x86_64.rpm
Red Hat Enterprise Linux7ppc64leatomic-openshift-cluster-autoscaler0:3.11.51-1.git.0.0aa9fc2.el7atomic-openshift-cluster-autoscaler-0:3.11.51-1.git.0.0aa9fc2.el7.ppc64le.rpm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

27 Jun 2026 03:14Current
5.9Medium risk
Vulners AI Score5.9
CVSS 24
CVSS 36.5
EPSS0.04021
2