Lucene search
K

6 matches found

OSV
OSV
added 2024/03/06 11:6 a.m.14 views

BIT-JENKINS-2020-2100

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier was vulnerable to a UDP amplification reflection denial of service attack on port 33848...

5.8CVSS5.6AI score0.03443EPSS
Exploits0References7
OSV
OSV
added 2024/03/06 11:6 a.m.16 views

BIT-JENKINS-2020-2105

REST API endpoints in Jenkins 2.218 and earlier, LTS 2.204.1 and earlier were vulnerable to clickjacking attacks...

5.4CVSS5.6AI score0.0185EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2020/02/19 7:55 p.m.3 views

jenkins: REST APIs vulnerable to clickjacking

REST API endpoints in Jenkins 2.218 and earlier, LTS 2.204.1 and earlier were vulnerable to clickjacking attacks...

5.4CVSS6AI score0.0185EPSS
Exploits0References4
NVD
NVD
added 2020/01/29 4:15 p.m.18 views

CVE-2020-2104

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier allowed users with Overall/Read access to view a JVM memory usage chart...

4.3CVSS4.6AI score0.01074EPSS
Exploits0References6
Prion
Prion
added 2020/01/29 4:15 p.m.21 views

Design/Logic Flaw

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier used a non-constant time comparison function when validating an HMAC...

3.5CVSS5.5AI score0.01397EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2020/01/29 12:0 a.m.4 views

PT-2020-15309 · Cloudbees +1 · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.218 and earlier Jenkins LTS versions 2.204.1 and earlier Description: The issue arises from a non-constant time comparison function used when validating an HMAC. This could potentially allow attackers to use statistical...

5.3CVSS5.8AI score0.01397EPSS
Exploits0References14
Rows per page
Query Builder