Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2022/03/07 12:0 a.m.94 views

Jenkins Enterprise and Operations Center 2.277.x < 2.277.43.0.6 / 2.303.x < 2.303.30.0.5 / 2.319.3.3 Multiple DoS (CloudBees Security Advisory 2022-02-09)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.277.x prior to 2.277.43.0.6, 2.303.x prior to 2.303.30.0.5, or 2.x prior to 2.319.3.3. It is, therefore, affected by multiple vulnerabilities: - XStream is an open source java library to serialize...

7.5CVSS8.2AI score0.07934EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2022/02/10 12:0 a.m.5 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1594 more potentially affected by CVE-2022-0538 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.31)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2022-0538 Source advisory: OSV:GHSA-34WX-X2W9-VQM3...

7.5CVSS7.1AI score0.03901EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/02/10 12:0 a.m.25 views

Jenkins < 2.319.3, < 2.334 DoS Vulnerability - Linux

Jenkins is prone to a denial of service DoS vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

7.5CVSS7.5AI score0.07934EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2022/02/10 12:0 a.m.27 views

Jenkins < 2.319.3, < 2.334 DoS Vulnerability - Windows

Jenkins is prone to a denial of service DoS vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

7.5CVSS7.5AI score0.07934EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2022/02/09 7:23 p.m.42 views

CVE-2022-0538

A denial of service DoS flaw was found in Jenkins. This flaw allows an attacker to define custom XStream converters that do not protect against the vulnerability in CVE-2021-43859, allowing for uncontrolled resource consumption...

7.5CVSS4.5AI score0.07934EPSS
Exploits1References4
CVE
CVE
added 2022/02/09 1:30 p.m.219 views

CVE-2022-0538

CVE-2022-0538 affects Jenkins 2.333 and earlier, and LTS 2.319.2 and earlier, due to custom XStream converters not updated to apply protections for CVE-2021-43859, allowing unconstrained resource usage (DoS). The root cause is insufficient safeguards in XStream converters. Remediation: upgrade XS...

7.5CVSS7.4AI score0.03901EPSS
Exploits0References2Affected Software1
FreeBSD
FreeBSD
added 2022/02/09 12:0 a.m.38 views

jenkins -- DoS vulnerability in bundled XStream library

Jenkins Security Advisory: Description Medium SECURITY-2602 / CVE-2021-43859 upstream issue, CVE-2022-0538 Jenkins-specific converters DoS vulnerability in bundled XStream library...

7.5CVSS2.4AI score0.07934EPSS
Exploits1References1
Rows per page
Query Builder