Lucene search
+L

35 matches found

Prion
Prion
added 2019/02/06 4:29 p.m.17 views

Denial of service

A denial of service vulnerability exists in Jenkins Monitoring Plugin 1.74.0 and earlier in PluginImpl.java that allows attackers to kill threads running on the Jenkins master...

4.3CVSS6.3AI score0.00735EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/02/06 4:0 p.m.51 views

CVE-2019-1003022

CVE-2019-1003022 concerns a denial-of-service in the Jenkins Monitoring Plugin prior to versions newer than 1.74.0, specifically in the PluginImpl.java code, which enables an attacker to kill threads running on the Jenkins master. The available connected documents consistently describe this vulne...

6.5CVSS6.3AI score0.00735EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/02/06 4:0 p.m.25 views

CVE-2019-1003022

A denial of service vulnerability exists in Jenkins Monitoring Plugin 1.74.0 and earlier in PluginImpl.java that allows attackers to kill threads running on the Jenkins master...

6.3AI score0.00735EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/02/06 12:0 a.m.6 views

PT-2019-11320 · Jenkins · Jenkins Monitoring Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Monitoring Plugin versions 1.74.0 and earlier Description: A denial of service issue exists that allows attackers to kill threads running on the Jenkins master. This is due to a vulnerability in the PluginImpl.java file...

6.5CVSS6.2AI score0.00735EPSS
Exploits0References4
NVD
NVD
added 2014/10/16 7:55 p.m.19 views

CVE-2014-3679

The Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to obtain sensitive information by accessing unspecified pages...

5CVSS6.1AI score0.01781EPSS
Exploits0References2
Prion
Prion
added 2014/10/16 7:55 p.m.18 views

Information disclosure

The Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to obtain sensitive information by accessing unspecified pages...

5CVSS6.7AI score0.01781EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/10/16 7:0 p.m.22 views

CVE-2014-3679

The Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to obtain sensitive information by accessing unspecified pages...

6.1AI score0.01781EPSS
Exploits0References2
CVE
CVE
added 2014/10/16 7:0 p.m.54 views

CVE-2014-3679

CVE-2014-3679 affects the Jenkins Monitoring plugin prior to 1.53.0. The issue is an information-disclosure flaw where certain Monitoring plugin pages are accessible to remote attackers, allowing them to obtain sensitive information. Affected: Jenkins Monitoring plugin (pre-1.53.0). Root cause: p...

5CVSS6.3AI score0.01781EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2014/10/14 1:1 p.m.7 views

jenkins: cross-site scripting flaws in the monitoring plug-in (SECURITY-113)

Cross-site scripting XSS vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.0184EPSS
Exploits0References4
NVD
NVD
added 2014/10/10 2:55 p.m.34 views

CVE-2014-3678

Cross-site scripting XSS vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.6AI score0.0184EPSS
Exploits0References3
Prion
Prion
added 2014/10/10 2:55 p.m.26 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.0184EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/10/10 2:0 p.m.66 views

CVE-2014-3678

CVE-2014-3678 is a Cross-site Scripting (XSS) vulnerability in the Jenkins Monitoring plugin, affecting versions before 1.53.0. The root cause is a faulty input validation in the Monitoring plugin that allows an attacker to inject arbitrary web script or HTML, via unspecified vectors, potentially...

4.3CVSS5.7AI score0.0184EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/10 2:0 p.m.32 views

CVE-2014-3678

Cross-site scripting XSS vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score0.0184EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2014/10/10 12:0 a.m.4 views

PT-2014-5447 · Jenkins · Jenkins Monitoring Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins Monitoring plugin versions prior to 1.53.0 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML. Recommendations: For versions prior to 1.53.0, update to version 1.53.0 or later ...

6.3CVSS5.4AI score0.0184EPSS
Exploits0References10
ArchLinux
ArchLinux
added 2014/10/02 12:0 a.m.73 views

jenkins: multiple issues

SECURITY-87/CVE-2014-3661 anonymous DoS attack through CLI handshake This vulnerability allows unauthenticated users with access to Jenkins' HTTP/HTTPS port to mount a DoS attack on Jenkins through thread exhaustion. - SECURITY-110/CVE-2014-3662 User name discovery Anonymous users can test if the...

7.5CVSS2.6AI score0.12768EPSS
Exploits0References13
Rows per page
Query Builder