Lucene search
+L

12 matches found

vulnersOsv
vulnersOsv
added 2022/05/24 5:23 p.m.3 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1593 more potentially affected by CVE-2020-2221 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.23)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2020-2221 Source advisory: OSV:GHSA-G4J6-M3M3-CRW8...

5.4CVSS6AI score0.01077EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/09/23 12:46 p.m.106 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.3.38 jenkins and openshift security update

An update for jenkins and openshift is now available for Red Hat OpenShift Container Platform 4.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

9.4CVSS6.8AI score0.83053EPSS
Exploits8References6
Tenable Nessus
Tenable Nessus
added 2020/09/23 12:0 a.m.52 views

RHEL 7 / 8 : OpenShift Container Platform 4.3.38 jenkins and openshift (RHSA-2020:3808)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3808 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

9.4CVSS7AI score0.83053EPSS
Exploits8References16
RedHat Linux
RedHat Linux
added 2020/08/27 10:15 a.m.2909 views

Important: Red Hat Security Advisory: OpenShift Container Platform 3.11 security update

An update for jenkins, jenkins-2-plugins, openshift-ansible, and python-rsa is now available for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

9.9CVSS6.5AI score0.01647EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2020/08/27 12:0 a.m.30 views

RHEL 7 : OpenShift Container Platform 3.11 (RHSA-2020:3541)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3541 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...

9.9CVSS6.6AI score0.01647EPSS
Exploits1References22
RedHat Linux
RedHat Linux
added 2020/08/24 2:53 p.m.46 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.5.7 jenkins and openshift packages security update

An update for jenkins and openshift is now available for Red Hat OpenShift Container Platform 4.5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

5.5CVSS6.3AI score0.01126EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2020/07/16 12:0 a.m.30 views

Jenkins < 2.245, < 2.235.2 LTS Multiple XSS Vulnerabilities - Linux

Jenkins is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

5.4CVSS5.8AI score0.01126EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/07/16 12:0 a.m.40 views

FreeBSD : jenkins -- multiple vulnerabilities (1ddab5cb-14c9-4632-959f-802c412a9593)

Jenkins Security Advisory : DescriptionHigh SECURITY-1868 / CVE-2020-2220 Stored XSS vulnerability in job build time trend High SECURITY-1901 / CVE-2020-2221 Stored XSS vulnerability in upstream cause High SECURITY-1902 / CVE-2020-2222 Stored XSS vulnerability in 'keep forever' badge icons High...

5.4CVSS5.5AI score0.01126EPSS
Exploits0References6
NVD
NVD
added 2020/07/15 6:15 p.m.10 views

CVE-2020-2221

Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape the upstream job's display name shown as part of a build cause, resulting in a stored cross-site scripting vulnerability...

5.4CVSS0.01077EPSS
Exploits0References2
OSV
OSV
added 2020/07/15 6:15 p.m.16 views

CVE-2020-2221

Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape the upstream job's display name shown as part of a build cause, resulting in a stored cross-site scripting vulnerability...

5.4CVSS5.7AI score
Exploits0References2
CVE
CVE
added 2020/07/15 5:0 p.m.167 views

CVE-2020-2221

CVE-2020-2221 affects Jenkins 2.244 and earlier (including LTS 2.235.1 and earlier). The root cause is a stored XSS in the upstream build cause display name that is not escaped, leading to cross-site scripting. The issue is addressed in Jenkins 2.245 and later; upgrading to a supported version re...

5.4CVSS5.2AI score0.01077EPSS
Exploits0References2Affected Software1
FreeBSD
FreeBSD
added 2020/07/15 12:0 a.m.47 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description High SECURITY-1868 / CVE-2020-2220 Stored XSS vulnerability in job build time trend High SECURITY-1901 / CVE-2020-2221 Stored XSS vulnerability in upstream cause High SECURITY-1902 / CVE-2020-2222 Stored XSS vulnerability in 'keep forever' badge icons High...

5.4CVSS0.2AI score0.01126EPSS
Exploits0References1
Rows per page
Query Builder