Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:11 p.m.6 views

CVE-2020-2267

A missing permission check in Jenkins MongoDB Plugin 1.3 and earlier allows attackers with Overall/Read permission to gain access to some metadata of any arbitrary files on the Jenkins controller...

4.3CVSS6.9AI score0.00691EPSS
Exploits0
CNVD
CNVD
added 2020/09/17 12:0 a.m.5 views

CloudBees Jenkins MongoDB Privilege Control Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A security vulnerability exis...

4.3CVSS6.8AI score0.00691EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/16 1:20 p.m.18 views

CVE-2020-2268

A cross-site request forgery CSRF vulnerability in Jenkins MongoDB Plugin 1.3 and earlier allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller...

9AI score0.00691EPSS
Exploits0References2
CVE
CVE
added 2020/09/16 1:20 p.m.64 views

CVE-2020-2268

CVE-2020-2268 applies to Jenkins MongoDB Plugin 1.3 and earlier. The CSRF vulnerability arises because methods implementing form validation do not perform permission checks, allowing attackers with Overall/Read permission to access metadata of arbitrary files on the Jenkins controller. The form v...

8.8CVSS8.8AI score0.00691EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/09/16 12:0 a.m.7 views

PT-2020-15493 · Jenkins · Jenkins Mongodb Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins MongoDB Plugin versions 1.3 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller. This issue arises because the plug...

8.8CVSS8.7AI score0.00691EPSS
Exploits0References7
Rows per page
Query Builder