8 matches found
Important: Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
An update for jenkins and jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.13. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1602 more potentially affected by CVE-2023-27902 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.37)
org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2023-27902 Source advisory: OSV:GHSA-CJ6R-8PXJ-5JV6...
CVE-2023-27902 vulnerabilities
Vulnerabilities for packages: jenkins...
CVE-2023-27902 vulnerabilities
Vulnerabilities for packages: jenkins...
Jenkins < 2.375.4 (LTS), < 2.394 Multiple Vulnerabilities - Windows
Jenkins is prone to multiple vulnerabilities. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2023-27902
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents...
CVE-2023-27902
CVE-2023-27902 — Normal mode Affected software: Jenkins Core (2.393 and earlier; LTS 2.375.3 and earlier). What is vulnerable: Jenkins creates temporary directories adjacent to workspace directories (often named @tmp) to store build-related temp files. When viewing job workspaces (in older builds...
jenkins -- multiple vulnerabilities
Jenkins Security Advisory: Description High SECURITY-3037 / CVE-2023-27898 XSS vulnerability in plugin manager Medium SECURITY-3030 / CVE-2023-24998 upstream issue, CVE-2023-27900 MultipartFormDataParser, CVE-2023-27901 StaplerRequest DoS vulnerability in bundled Apache Commons FileUpload library...