10 matches found
BIT-JENKINS-2026-53438
A missing permission check in Jenkins 2.567 and earlier, LTS 2.555.2 and earlier allows attackers with Item/Cancel permission, but lacking Item/Read permission, to cancel queue items they do not have permission to view...
CVE-2026-53438
A missing permission check in Jenkins 2.567 and earlier, LTS 2.555.2 and earlier allows attackers with Item/Cancel permission, but lacking Item/Read permission, to cancel queue items they do not have permission to view...
EUVD-2026-36022
A missing permission check in Jenkins 2.567 and earlier, LTS 2.555.2 and earlier allows attackers with Item/Cancel permission, but lacking Item/Read permission, to cancel queue items they do not have permission to view...
EUVD-2022-4887
Malicious code in bioql PyPI...
GHSA-Q4WP-8C99-69PW Improper permission checks allow canceling queue items and aborting builds in Jenkins
Jenkins 2.299 and earlier, LTS 2.289.1 and earlier allows users to cancel queue items and abort builds of jobs for which they have Item/Cancel permission even when they do not have Item/Read permission. Jenkins 2.300, LTS 2.289.2 requires that users have Item/Read permission for applicable types ...
Incorrect Authorization
jenkins is vulnerable to Incorrect Authorization. The vulnerability exists due to the system allowing users to cancel queue items and abort builds of jobs for which they have Item/Cancel permission even when they do not have Item/Read permission...
CVE-2021-21670
Incorrect Authorization vulnerability was found in Jenkins. Users with Item/Cancel permission are able to cancel queue items and abort builds of jobs even when they do not have Item/Read permission. Mitigation As a workaround on earlier versions of Jenkins, do not grant Item/Cancel permission to...
jenkins: improper permission checks allow canceling queue items and aborting builds
Incorrect Authorization vulnerability was found in Jenkins. Users with Item/Cancel permission are able to cancel queue items and abort builds of jobs even when they do not have Item/Read permission...
jenkins: improper permission checks allow canceling queue items and aborting builds
Incorrect Authorization vulnerability was found in Jenkins. Users with Item/Cancel permission are able to cancel queue items and abort builds of jobs even when they do not have Item/Read permission...
PT-2021-14713 · Jenkins · Jenkins
Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.299 and earlier Jenkins LTS versions 2.289.1 and earlier Description: The issue allows users to cancel queue items and abort builds of jobs for which they have Item/Cancel permission even when they do not have Item/Read...