Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2020/03/26 12:0 a.m.53 views

Jenkins < 2.228, < 2.204.6 LTS Multiple Vulnerabilities - Windows

Jenkins is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS6AI score0.01993EPSS
Exploits0References1
OSV
OSV
added 2020/03/25 5:15 p.m.15 views

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability...

5.4CVSS5.6AI score
Exploits0References2
Cvelist
Cvelist
added 2020/03/25 4:5 p.m.24 views

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability...

6.6AI score0.01159EPSS
Exploits0References2
CVE
CVE
added 2020/03/25 4:5 p.m.161 views

CVE-2020-2162

CVE-2020-2162 affects Jenkins 2.227 and earlier, and Jenkins LTS 2.204.5 and earlier. The issue is a stored cross-site scripting (XSS) vulnerability caused by Jenkins not setting Content-Security-Policy headers for files uploaded as file parameters to a build. The core impact is that an attacker ...

5.4CVSS5.3AI score0.01159EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2020/03/25 4:5 p.m.29 views

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability...

5.4CVSS5.6AI score0.01159EPSS
Exploits0
Rows per page
Query Builder