5 matches found
CVE-2017-2605
CVE-2017-2605 is a duplicate of CVE-2017-1000362 concerning Jenkins’ re-key admin monitor. Affected product: Jenkins (CloudBees Jenkins/JENKINS_HOME). Root cause: the re-key admin monitor introduced in Jenkins 1.498 re-encrypts secrets and creates a backup directory with old secrets, which were w...
CVE-2017-1000362
The re-key admin monitor was introduced in Jenkins 1.498 and re-encrypted all secrets in JENKINSHOME with a new key. It also created a backup directory with all old secrets, and the key used to encrypt them. These backups were world-readable and not removed afterwards. Jenkins now deletes the...
CVE-2017-1000362
The vulnerability CVE-2017-1000362 affects Jenkins (re-key admin monitor). In Jenkins 1.498, secrets were re-encrypted with a new key and a backup directory at JENKINS_HOME/jenkins.security.RekeySecretAdminMonitor/backups was created containing the old, unremoved secrets; these backups were world...
Jenkins Multiple Vulnerabilities (Feb 2017) - Windows
Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins"; ifdescription...
Jenkins Multiple Vulnerabilities (Feb 2017) - Linux
Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins"; ifdescription...