Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/25 12:0 a.m.37 views

FreeBSD : jenkins -- multiple vulnerabilities (402fccd0-5b6d-11ee-9898-00e081b7aa2d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 402fccd0-5b6d-11ee-9898-00e081b7aa2d advisory. - Jenkins 2.50 through 2.423 both inclusive, LTS 2.60.1 through 2.414.1 both inclusive does no...

8.8CVSS6.7AI score0.03388EPSS
Exploits0References6
NVD
NVD
added 2023/09/20 5:15 p.m.18 views

CVE-2023-43497

In Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using the Stapler web framework creates temporary files in the default system temporary directory with the default permissions for newly created files, potentially allowing attackers with access to the Jenkins controll...

8.1CVSS8.8AI score0.008EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2023/09/20 5:15 p.m.30 views

CVE-2023-43497

In Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using the Stapler web framework creates temporary files in the default system temporary directory with the default permissions for newly created files, potentially allowing attackers with access to the Jenkins controll...

8.1CVSS6.9AI score0.008EPSS
Exploits0
CVE
CVE
added 2023/09/20 4:6 p.m.155 views

CVE-2023-43497

CVE-2023-43497 affects Jenkins 2.423 and earlier, and LTS 2.414.1 and earlier. The root cause is in processing file uploads via the Stapler web framework, which creates temporary files in the system temporary directory with default permissions. This could let an attacker with access to the Jenkin...

8.1CVSS7.7AI score0.008EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/09/20 4:6 p.m.48 views

CVE-2023-43497

In Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using the Stapler web framework creates temporary files in the default system temporary directory with the default permissions for newly created files, potentially allowing attackers with access to the Jenkins controll...

8.1AI score0.008EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/09/20 12:0 a.m.37 views

Jenkins LTS < 2.414.2 / Jenkins weekly < 2.424 Multiple Vulnerabilities

According to its its self-reported version number, the version of Jenkins running on the remote web server is Jenkins LTS prior to 2.414.2 or Jenkins weekly prior to 2.424. It is, therefore, affected by multiple vulnerabilities: - Jenkins 2.50 through 2.423 both inclusive, LTS 2.60.1 through...

8.8CVSS6.5AI score0.03388EPSS
Exploits0References6
FreeBSD
FreeBSD
added 2023/09/20 12:0 a.m.70 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description Medium SECURITY-3261 / CVE-2023-43494 Builds can be filtered by values of sensitive build variables High SECURITY-3245 / CVE-2023-43495 Stored XSS vulnerability High SECURITY-3072 / CVE-2023-43496 Temporary plugin file created with insecure permissions Low...

8.8CVSS6.4AI score0.03388EPSS
Exploits0References1
Rows per page
Query Builder