3 matches found
CVE-2018-1000408
A denial of service vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that allows attackers without Overall/Read permission to access a specific URL on instances using the built-in Jenkins user database...
CVE-2018-1000408
CVE-2018-1000408 describes a denial-of-service vulnerability in Jenkins where, on builds using the built-in Jenkins user database (HudsonPrivateSecurityRealm), an attacker without Overall/Read permission can access a specific URL, causing an ephemeral user record to be created in memory. Affected...
Jenkins < 2.146 and < 2.138.2 LTS Multiple Vulnerabilities - Linux
Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...