Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2018/07/30 3:50 a.m.27 views

CVE-2018-1999003

A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Queue.java that allows attackers with Overall/Read permission to cancel queued builds...

4.6CVSS6.1AI score0.00759EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/07/24 12:0 a.m.139 views

Jenkins < 2.133 and < 2.121.2 LTS Multiple Vulnerabilities - Linux

Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.4AI score0.86641EPSS
Exploits8References1
OpenVAS
OpenVAS
added 2018/07/24 12:0 a.m.106 views

Jenkins < 2.133 and < 2.121.2 LTS Multiple Vulnerabilities - Windows

Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.4AI score0.86641EPSS
Exploits8References1
OSV
OSV
added 2018/07/23 7:29 p.m.27 views

CVE-2018-1999003

A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Queue.java that allows attackers with Overall/Read permission to cancel queued builds...

4.3CVSS6.3AI score0.00759EPSS
Exploits0References2
CVE
CVE
added 2018/07/23 7:0 p.m.117 views

CVE-2018-1999003

CVE-2018-1999003 affects Jenkins versions up to 2.133 (and 2.132/2.121.1 and earlier) where the Queue.java path fails to enforce privileges. This allows attackers with Overall/Read permission to cancel queued builds. The issue is rooted in improper authorization logic for queue operations. Impact...

4.3CVSS5.8AI score0.00759EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/20 12:0 a.m.86 views

FreeBSD : jenkins -- multiple vulnerabilities (20a1881e-8a9e-11e8-bddf-d017c2ca229d)

Jenkins Security Advisory : DescriptionHigh SECURITY-897 / CVE-2018-1999001 Users without Overall/Read permission can have Jenkins reset parts of global configuration on the next restart High SECURITY-914 / CVE-2018-1999002 Arbitrary file read vulnerability Medium SECURITY-891 / CVE-2018-1999003...

8.8CVSS5.5AI score0.86641EPSS
Exploits8References9
Rows per page
Query Builder