Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/25 12:0 a.m.37 views

FreeBSD : jenkins -- multiple vulnerabilities (402fccd0-5b6d-11ee-9898-00e081b7aa2d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 402fccd0-5b6d-11ee-9898-00e081b7aa2d advisory. - Jenkins 2.50 through 2.423 both inclusive, LTS 2.60.1 through 2.414.1 both inclusive does no...

8.8CVSS6.7AI score0.03388EPSS
Exploits0References6
Circl
Circl
added 2023/09/20 8:30 p.m.6 views

CVE-2023-43496

creationtimestamp| type| source ---|---|--- 2023-09-20 20:30:16+00:00| seen| https://t.me/cibsecurity/70805 2024-01-03 23:29:41+00:00| seen| https://t.me/arpsyndicate/2382 2024-02-07 15:16:59+00:00| seen| https://t.me/ctinow/180734 2024-02-07 15:17:01+00:00| seen| https://t.me/ctinow/180735...

8.8CVSS7.8AI score0.00944EPSS
Exploits0References5
NVD
NVD
added 2023/09/20 5:15 p.m.28 views

CVE-2023-43496

Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file...

8.8CVSS9.4AI score0.00944EPSS
Exploits0References2
OSV
OSV
added 2023/09/20 5:15 p.m.37 views

CVE-2023-43496

Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file...

8.8CVSS7.8AI score
Exploits0References2
Cvelist
Cvelist
added 2023/09/20 4:6 p.m.27 views

CVE-2023-43496

Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file...

9AI score0.00944EPSS
Exploits0References2
CVE
CVE
added 2023/09/20 4:6 p.m.169 views

CVE-2023-43496

CVE-2023-43496 affects Jenkins core: when installing a plugin from a URL, Jenkins 2.423 and earlier (including LTS 2.414.1 and earlier) creates a temporary file in the system temporary directory with default permissions, enabling an attacker with access to that directory to replace the file befor...

8.8CVSS8.7AI score0.00944EPSS
Exploits0References2Affected Software1
FreeBSD
FreeBSD
added 2023/09/20 12:0 a.m.69 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description Medium SECURITY-3261 / CVE-2023-43494 Builds can be filtered by values of sensitive build variables High SECURITY-3245 / CVE-2023-43495 Stored XSS vulnerability High SECURITY-3072 / CVE-2023-43496 Temporary plugin file created with insecure permissions Low...

8.8CVSS6.4AI score0.03388EPSS
Exploits0References1
Rows per page
Query Builder