4 matches found
Jenkins < 2.228, < 2.204.6 LTS Multiple Vulnerabilities - Windows
Jenkins is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-2160
Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL...
CVE-2020-2160
Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL...
CVE-2020-2160
CVE-2020-2160 affects Jenkins 2.227 and earlier and LTS 2.204.5 and earlier, where a mismatch in URL path representations allowed bypassing CSRF protection for arbitrary URLs. The present connected documents confirm a CSRF bypass vulnerability in Jenkins’ CSRF protection component, enabling an un...