Lucene search
+L
JenkinsMost viewed

1464 matches found

Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

Stored XSS vulnerability in anchore-container-scanner

anchore-container-scanner 1.0.24 and earlier does not escape content provided by the Anchore engine API. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control API responses by Anchore engine. anchore-container-scanner 1.0.25 escapes content...

8CVSS5.3AI score0.00602EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

CSRF vulnerability and missing permission check in cavisson-ns-nd-integration

cavisson-ns-nd-integration 4.8.0.129 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified webserver using attacker-specified username and password. Additionally, this form...

8.8CVSS7.8AI score0.00827EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

Stored XSS vulnerability in cavisson-ns-nd-integration

cavisson-ns-nd-integration 4.8.0.134 and earlier does not escape configuration options of the Execute NetStorm/NetCloud Test build step. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission. As of publication of this advisory, the...

8CVSS5.3AI score0.00469EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

Path traversal and CSRF vulnerability in build-publisher

build-publisher 1.22 and earlier allows attackers with Item/Configure permission to create or replace any config.xml file on the Jenkins controller file system by providing a crafted file name to an API endpoint. Additionally, this endpoint does not require POST requests, resulting in a cross-sit...

8.8CVSS6.5AI score0.01231EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

CSRF vulnerability and missing permission check in scm-httpclient allow capturing credentials

scm-httpclient 1.5 and earlier does not perform permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing...

8.8CVSS6.9AI score0.00551EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

Missing permission check in apprenda allows enumerating credentials IDs

apprenda 2.2.0 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using another vulnerability. As o...

4.3CVSS5.1AI score0.00544EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

Missing webhook endpoint authorization in rundeck

rundeck 3.6.11 and earlier does not protect access to the /plugin/rundeck/webhook/ endpoint. This allows attackers with Item/Read permission to trigger jobs that are configured to be triggerable via Rundeck. As of publication of this advisory, there is no fix. Learn why we announce this...

8.8CVSS7.7AI score0.00827EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

CSRF vulnerability in security-inspector

security-inspector 117.v6eecc36919c2 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to replace the generated report stored in a per-session cache and displayed to authorized users a...

8.8CVSS7.8AI score0.00372EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.7 views

API key stored in plain text by bigpanda-jenkins

bigpanda-jenkins 1.4.0 and earlier stores the BigPanda API key unencrypted in its global configuration file BigpandaGlobalNotifier.xml on the Jenkins controller as part of its configuration. This API key can be viewed by users with access to the Jenkins controller file system. Additionally, the...

5.3CVSS5.1AI score0.0042EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/07/27 12:0 a.m.7 views

Missing hostname verification in git-client

git-client 3.11.0 and earlier does not perform SSH host key verification when connecting to Git repositories via SSH. This lack of verification could be abused using a man-in-the-middle attack to intercept these connections. git-client 3.11.1 provides strategies for performing host key verificati...

8.1CVSS6.5AI score0.00783EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/07/27 12:0 a.m.7 views

Missing permission checks in compuware-topaz-utilities

compuware-topaz-utilities 1.0.8 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to enumerate hosts and ports of Compuware configurations and credentials IDs of credentials stored in Jenkins. Those credentials IDs can be...

4.3CVSS5AI score0.00569EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/07/27 12:0 a.m.7 views

Missing permission check in android-signing allows listing workspace contents

android-signing 2.2.5 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Item/Read permission but without Item/Workspace or Item/Configure permission to check whether attacker-specified file patterns match workspace contents. A...

4.3CVSS5AI score0.00569EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/07/27 12:0 a.m.7 views

Missing permission check in buckminster

buckminster 1.1.1 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system. A sequence of requests can be used to...

4.3CVSS5AI score0.00486EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

XSS vulnerability in testng-plugin

testng-plugin has options in its post-build step configuration to not escape test descriptions and exception messages. If those options are unchecked, testng-plugin 554.va4a552116332 and earlier renders the unescaped text provided in test results. This results in a cross-site scripting XSS...

8CVSS5.2AI score0.00567EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

Stored XSS vulnerability in build-metrics

build-metrics 1.3 does not escape the build description on one of its views. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers with Build/Update permission. As of publication of this advisory, there is no fix. Learn why we announce this...

8CVSS5.3AI score0.0071EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

Stored XSS vulnerability in rich-text-publisher-plugin

rich-text-publisher-plugin 1.4 and earlier does not escape the HTML message set by its post-build step. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs. As of publication of this advisory, there is no fix. Learn why we announce this...

8CVSS5.3AI score0.00567EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

Stored XSS vulnerability in validating-email-parameter

validating-email-parameter 1.10 and earlier does not escape the name and description of its parameter type. Additionally, it disables the security hardening added in Jenkins 2.44 and LTS 2.32.2 as part of the SECURITY-353 / CVE-2017-2601 fix that protects the "Build With Parameters" and...

8CVSS6.1AI score0.02146EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

CSRF vulnerability and missing permission checks in ec2-deployment-dashboard

ec2-deployment-dashboard 1.0.10 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to connect to an attacker-specified HTTP URL using attacker-specified username and password. Additionally, these endpoints do not require PO...

5.4CVSS4.9AI score0.00558EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

Password stored in plain text by ec2-deployment-dashboard

ec2-deployment-dashboard 1.0.10 and earlier stores a password unencrypted in its global configuration file de.codecentric.jenkins.dashboard.DashboardView.xml on the Jenkins controller as part of its configuration. This password can be viewed by users with access to the Jenkins controller file...

4.3CVSS5.1AI score0.00557EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

Secrets stored in plain text by rocketchatnotifier

rocketchatnotifier 1.5.2 and earlier stores the login password and webhook token unencrypted in its global configuration file RocketChatNotifier.xml on the Jenkins controller as part of its configuration. These secrets can be viewed by users with access to the Jenkins controller file system. As o...

4.3CVSS5AI score0.00701EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

Token stored in plain text by cisco-spark

cisco-spark 1.1.1 and earlier stores bearer tokens unencrypted in its global configuration file org.jenkinsci.plugins.spark.SparkNotifier.xml on the Jenkins controller as part of its configuration. These bearer tokens can be viewed by users with access to the Jenkins controller file system. As of...

4.3CVSS5AI score0.00557EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

CSRF vulnerability in rrod

rrod 1.1.0 and earlier does not require POST requests for HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to accept pending requests, thereby renaming or deleting jobs. As of publication of this advisory, there is no fix. Learn why ...

4.3CVSS5AI score0.00454EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/30 12:0 a.m.7 views

Passwords stored in plain text by hpe-network-virtualization

hpe-network-virtualization 1.0 stores passwords unencrypted in its global configuration file org.jenkinsci.plugins.nvemulation.plugin.NvEmulationBuilder.xml on the Jenkins controller as part of its configuration. These passwords can be viewed by users with access to the Jenkins controller file...

6.5CVSS6.4AI score0.00686EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/22 12:0 a.m.7 views

CSRF vulnerability and missing permission checks in convertigo-mobile-platform

convertigo-mobile-platform 1.1 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL. Additionally, this form validation method does not require POST requests, resulting ...

8.8CVSS6.8AI score0.00574EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/22 12:0 a.m.7 views

CSRF vulnerability and missing permission check in vmware-vrealize-orchestrator

vmware-vrealize-orchestrator 3.0 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to send an HTTP POST request to an attacker-specified URL. Additionally, this HTTP endpoint does not require POST requests, resulting in a...

6.5CVSS6AI score0.00624EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/22 12:0 a.m.7 views

Reflected XSS vulnerability in embeddable-build-status

embeddable-build-status 2.0.3 allows specifying a link query parameter that build status badges will link to, without restricting possible values. This results in a reflected cross-site scripting XSS vulnerability. embeddable-build-status 2.0.4 limits URLs to http and https protocols and correctl...

8.8CVSS5.8AI score0.00911EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/06/22 12:0 a.m.7 views

Path traversal vulnerability in embeddable-build-status

embeddable-build-status 2.0.3 and earlier allows specifying a style query parameter that is used to choose a different SVG image style without restricting possible values. This results in a relative path traversal vulnerability, allowing attackers without Overall/Read permission to specify paths ...

7.5CVSS7.3AI score0.01596EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

Sandbox bypass vulnerability through implicitly allowlisted platform Groovy files in workflow-cps

workflow-cps allows pipelines to load Groovy source files. This is intended to be used to allow Global Shared Libraries to execute without sandbox protection. In workflow-cps 2689.v434009a31bf1 and earlier, any Groovy source files bundled with Jenkins core and plugins could be loaded this way and...

8.5CVSS7.8AI score0.01328EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

Multiple vulnerabilities in Windows Remote Command library in windows-slaves

windows-slaves 1.8 and earlier includes the Windows Remote Command library. It provides a general-purpose remote command execution capability that Jenkins uses to check if Java is available, and if not, to install it. This library has a buffer overflow vulnerability that may allow users able to...

8.8CVSS8.7AI score0.01717EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

User-scoped credentials exposed to other users by blueocean-pipeline-scm-api

When pipelines are created using the pipeline creation wizard in Blue Ocean, the credentials used are stored in the per-user credentials store of the user creating the pipeline. To allow pipelines to use this credential to scan repositories and checkout from SCM, the Blue Ocean Credentials Provid...

6.5CVSS6.3AI score0.00922EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

XXE vulnerability in Storable Configs

Storable Configs 1.0 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers with Item/Configure permission to have Jenkins parse a crafted file that uses external entities for extraction of secrets from the Jenkins controller or server-side...

8.8CVSS7.8AI score0.01148EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

CSRF vulnerability and missing permission checks in ssh allow capturing credentials

ssh 2.6.1 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.8CVSS6.9AI score0.00818EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

CSRF vulnerability and missing permission checks in blueocean

blueocean 1.25.3 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to send requests to an attacker-specified URL. Additionally, these endpoints do not require POST requests, resulting in a cross-site request forgery CSRF...

6.5CVSS6.3AI score0.00835EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

Missing permission check in gitlab-plugin allows enumerating credentials IDs

gitlab-plugin 1.5.31 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using another vulnerability...

6.5CVSS6.4AI score0.00818EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

Stored XSS vulnerability in rundeck

rundeck 3.6.10 and earlier does not restrict URL schemes in Rundeck webhook submissions. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to submit crafted Rundeck webhook payloads. rundeck 3.6.11 sanitizes URLs submitted in Rundeck webhook payloads...

8CVSS5.3AI score0.71943EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

Stored XSS vulnerabilities in multiple plugins providing additional parameter types

Multiple plugins do not escape the name and description of the parameter types they provide: Application Detector Plugin 1.0.8 and earlier SECURITY-2732 / CVE-2022-30960 Autocomplete Parameter Plugin 1.1 and earlier SECURITY-2729 / CVE-2022-30961 Global Variable String Parameter Plugin 1.2 and...

8CVSS5.4AI score0.0073EPSS
Exploits0Affected Software9
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/05/17 12:0 a.m.7 views

Stored XSS vulnerability in Autocomplete Parameter

Autocomplete Parameter 1.1 and earlier references Dropdown Autocomplete parameter and Auto Complete String parameter names in an unsafe manner from Javascript embedded in view definitions. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure...

8CVSS5.3AI score0.00749EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/04/12 12:0 a.m.7 views

Untrusted users can modify some Pipeline libraries in workflow-cps-global-lib

Multibranch Pipelines by default limit who can change the Pipeline definition from the Jenkinsfile. This is useful for SCMs like GitHub: Jenkins can build content from users without commit access, but who can submit pull requests, without granting them the ability to modify the Pipeline definitio...

7.3CVSS5.6AI score0.01116EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/04/12 12:0 a.m.7 views

Private key stored in plain text by google-compute-engine

google-compute-engine 4.3.8 and earlier stores private keys unencrypted in cloud agent config.xml files on the Jenkins controller as part of its configuration. These private keys can be viewed by users with Agent/Extended Read permission or access to the Jenkins controller file system...

4.3CVSS5.1AI score0.00724EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/04/12 12:0 a.m.7 views

CSRF vulnerability in subversion

subversion 2.15.3 and earlier does not require POST requests for several form validation methods, resulting in cross-site request forgery CSRF vulnerabilities. These vulnerabilities allow attackers to connect to an attacker-specified URL. subversion 2.15.4 requires POST requests for the affected...

4.3CVSS5.9AI score0.01802EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

CSRF vulnerability and missing permission check in JiraTestResultReporter

JiraTestResultReporter 165.v817928553942 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials. Additionally, this form validation...

8.8CVSS6.2AI score0.00714EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

XXE vulnerability in covcomplplot

covcomplplot 1.1.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control the input files for the 'Public Coverage / Complexity Scatter Plot' post-build step to have Jenkins parse a crafted file that uses external entities f...

8.1CVSS7.8AI score0.00972EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

Arbitrary file read vulnerability in Pipeline: Phoenix AutoTest

Pipeline: Phoenix AutoTest 1.3 and earlier implements a Pipeline step ftp to upload files to an FTP server without limiting the source directory. This allows attackers with Item/Configure permission to upload arbitrary files from the Jenkins controller via FTP to an attacker-specified FTP server...

6.5CVSS6.5AI score0.01376EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

CSRF vulnerability and missing permission checks in proxmox

proxmox 0.7.0 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to: connect to an attacker-specified host using attacker-specified username and password, performing a connection test, disable SSL/TLS validation for the...

7.5CVSS6.6AI score0.0079EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

Path traversal vulnerability on Windows in ci-with-toad-edge

ci-with-toad-edge 2.3 and earlier uses a patched fork of an old version of the file browser for workspaces, archived artifacts, and userContent/ from Jenkins core DirectoryBrowserSupport to serve reports. The fork did not receive the fix for SECURITY-2481 in Jenkins 2.315 and LTS 2.303.2. This...

6.5CVSS6.5AI score0.01764EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

CSRF vulnerability and missing permission check in ownership

ownership 0.13.0 and earlier does not perform a permission check in several HTTP endpoints. This allows attackers with Item/Read permission to change the owners and item-specific permissions of a job. Additionally, this endpoint does not require POST requests, resulting in a cross-site request...

8.8CVSS6.2AI score0.00714EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

Stored XSS vulnerability in sitemonitor

sitemonitor 0.6 and earlier does not escape URLs of sites to monitor in tooltips. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission. As of publication of this advisory, there is no fix. Learn why we announce this...

8CVSS5.3AI score0.00776EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

Passwords stored in plain text by instant-messaging

instant-messaging provides a framework for plugins integrating Jenkins with instant messaging services. instant-messaging 1.41 and earlier stores passwords for group chats unencrypted in the global configuration file of plugins based on instant-messaging on the Jenkins controller. These passwords...

6.5CVSS6.4AI score0.00887EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

Arbitrary file read vulnerability in ci-with-toad-edge

ci-with-toad-edge 2.3 and earlier allows attackers with Item/Configure permission to read arbitrary files on the Jenkins controller by specifying an input folder on the Jenkins controller as a parameter to its build steps. ci-with-toad-edge 2.4 only allows copying files from the node the build is...

6.5CVSS6.6AI score0.01764EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/03/29 12:0 a.m.7 views

Path traversal vulnerability in Pipeline: Phoenix AutoTest allows reading arbitrary files

Pipeline: Phoenix AutoTest 1.3 and earlier implements a Pipeline step copy to copy files from the running build's directory on the Jenkins controller to an agent without sanitizing the path specified. This allows attackers with Item/Configure permission to copy arbitrary files and directories fro...

6.5CVSS6.6AI score0.01519EPSS
Exploits0Affected Software1
Total number of security vulnerabilities1464