4 matches found
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1570 more potentially affected by CVE-2018-1000195 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.10)
org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2018-1000195 Source advisory: OSV:GHSA-RGMJ-MCCJ-H9MX...
Jenkins < 2.121 and < 2.107.3 LTS Multiple Vulnerabilities - Linux
Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins"; ifdescription...
Jenkins < 2.121 and < 2.107.3 LTS Multiple Vulnerabilities - Windows
Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins"; ifdescription...
CVE-2018-1000195
The CVE-2018-1000195 issue affects Jenkins versions 2.120 and older (including LTS 2.107.2 and older). The vulnerability is a server-side request forgery in ZipExtractionInstaller.java that lets users with Overall/Read permission cause Jenkins to submit an HTTP GET request to an arbitrary URL and...