Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.6 views

RHCOS 4 : OpenShift Container Platform 4.5.13 jenkins (RHSA-2020:3841)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3841 advisory. - jetty: double release of resource can lead to information disclosure CVE-2019-17638 - jenkins: user-specified tooltip values leads...

9.4CVSS6.8AI score0.83053EPSS
Exploits8References10
Exploit DB
Exploit DB
added 2020/12/11 12:0 a.m.672 views

Jenkins 2.235.3 - 'tooltip' Stored Cross-Site Scripting

Exploit Title: Jenkins 2.235.3 - 'tooltip' Stored Cross-Site Scripting Date: 11/12/2020 Exploit Author: gx1 Vendor Homepage: https://www.jenkins.io/ Software Link: https://updates.jenkins-ci.org/download/war/ Version: = 2.251 and = LTS 2.235.3 Tested on: any CVE : CVE-2020-2229 References:...

5.4CVSS5.8AI score0.06765EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2020/10/13 8:4 a.m.76 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.4.27 openshift-jenkins-2-container security update

An update for openshift-jenkins-2-container is now available for Red Hat OpenShift Container Platform 4.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.4CVSS6.8AI score0.83053EPSS
Exploits8References5
Tenable Nessus
Tenable Nessus
added 2020/10/02 12:0 a.m.48 views

RHEL 7 : OpenShift Container Platform 4.5.13 jenkins (RHSA-2020:3841)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3841 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...

9.4CVSS6.8AI score0.83053EPSS
Exploits8References10
RedHat Linux
RedHat Linux
added 2020/09/30 6:56 p.m.89 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.5.13 jenkins security update

An update for jenkins is now available for Red Hat OpenShift Container Platform 4.5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.4CVSS6.8AI score0.83053EPSS
Exploits8References5
Tenable Nessus
Tenable Nessus
added 2020/09/23 12:0 a.m.51 views

RHEL 7 / 8 : OpenShift Container Platform 4.3.38 jenkins and openshift (RHSA-2020:3808)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3808 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

9.4CVSS7AI score0.83053EPSS
Exploits8References16
RedhatCVE
RedhatCVE
added 2020/09/02 11:48 a.m.39 views

CVE-2020-2229

A flaw was found in Jenkins in versions prior to 2.251 and LTS 2.235.3. Tooltip values, which are not properly escaped, can be contributed by plugins and use user-specified values. This results in a potential stored cross-site scripting XSS vulnerability. This highest threat from this vulnerabili...

3.5CVSS1.8AI score0.06765EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2020/08/13 12:0 a.m.35 views

FreeBSD : jenkins -- multiple vulnerabilities (eef0d2d9-78c0-441e-8b03-454c5baebe20)

Jenkins Security Advisory : DescriptionHigh SECURITY-1955 / CVE-2020-2229 Stored XSS vulnerability in help icons High SECURITY-1957 / CVE-2020-2230 Stored XSS vulnerability in project naming strategy High SECURITY-1960 / CVE-2020-2231 Stored XSS vulnerability in 'Trigger builds remotely' C Tenabl...

5.4CVSS6.1AI score0.83053EPSS
Exploits8References5
OpenVAS
OpenVAS
added 2020/08/13 12:0 a.m.22 views

Jenkins < 2.252, < 2.235.4 Multiple XSS Vulnerabilities - Linux

Jenkins is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

5.4CVSS5.4AI score0.83053EPSS
Exploits8References1
CVE
CVE
added 2020/08/12 1:25 p.m.185 views

CVE-2020-2229

Jenkins CVE-2020-2229 is a stored XSS vulnerability caused by failing to escape tooltip content in help icons. Affected products/versions: Jenkins 2.251 and earlier, and LTS 2.235.3 and earlier. Impact: stored XSS via plugin-contributed tooltip values. Mitigation: upgrade to Jenkins 2.252 or LTS ...

5.4CVSS5AI score0.06765EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder