Lucene search
Redhat.comRH:CVE-2020-2099HistoryJan 31, 2020 - 9:09 p.m.
CVE-2020-2099
2020-01-3121:09:10
redhat.com
access.redhat.com
8
0.005 Low
EPSS
Percentile
75.3%
A flaw was found in Jenkins. Encryption key parameters are improperly reused in the Inbound TCP Agent Protocol/3 allowing unauthorized attackers with knowledge of agent names to obtain the connection secrets for those agents. The highest threat from this vulnerability is to data confidentiality.
Related
cve
cve
CVE-2020-2099
2020-01-29 16:15:12
osv
osv
CVE-2020-2099
2020-01-29 16:15:12
Inbound TCP Agent Protocol/3 authentication bypass in Jenkins
2022-05-24 17:07:40
BIT-jenkins-2020-2099
2024-03-06 11:07:09
prion
prion
Design/Logic Flaw
2020-01-29 16:15:00
github
github
Inbound TCP Agent Protocol/3 authentication bypass in Jenkins
2022-05-24 17:07:40
openvas
openvas
Jenkins < 2.214, < 2.204.2 LTS Authentication Bypass Vulnerability - Linux
2020-02-04 00:00:00
Jenkins < 2.214, < 2.204.2 LTS Authentication Bypass Vulnerability - Windows
2020-02-04 00:00:00
cvelist
cvelist
CVE-2020-2099
2020-01-29 15:15:27
nvd
nvd
CVE-2020-2099
2020-01-29 16:15:12
nessus
nessus
freebsd
freebsd
jenkins -- multiple vulnerabilities
2020-01-29 00:00:00