4 matches found
GHSA-CWH9-F8M6-6R63 Jenkins Cross-site Scripting vulnerability
Cross-site scripting XSS vulnerability in Jenkins before 1.583 and LTS before 1.565.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
jenkins: denial of service (SECURITY-87)
Jenkins before 1.583 and LTS before 1.565.3 allows remote attackers to cause a denial of service thread consumption via vectors related to a CLI handshake...
jenkins: remote code execution flaw (SECURITY-150)
Jenkins before 1.583 and LTS before 1.565.3 allows remote attackers to execute arbitrary code via a crafted packet to the CLI channel...
jenkins: directory traversal flaw (SECURITY-131)
Directory traversal vulnerability in Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Overall/READ permission to read arbitrary files via unspecified vectors...