Lucene search
K
JenkinsMost viewed

1464 matches found

Jenkins Security Advisories
Jenkins Security Advisories
added 2025/03/19 12:0 a.m.8 views

API key displayed without masking by zohoqengine

zohoqengine stores the QEngine API Key in job config.xml files on the Jenkins controller as part of its configuration. While this key is stored encrypted on disk, in zohoqengine 1.0.29.vfacc23396502 and earlier the job configuration form does not mask the QEngine API Key form field, increasing th...

3.1CVSS5.2AI score0.00261EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/11/13 12:0 a.m.8 views

Missing permission check in script-security

script-security 1367.vdf2fc45f229c and earlier, except 1365.1367.va3bb89f8a95b and 1362.1364.v4cf2dc5d8776, does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to check for the existence of files on the controller file...

4.3CVSS5AI score0.0036EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/05/24 12:0 a.m.8 views

Stored XSS vulnerability in teamconcert-git

teamconcert-git 2.0.4 and earlier does not escape the Rational Team Concert RTC server URI on the build page when showing changes. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs. teamconcert-git 2.0.5 escapes the Rational Team Conce...

8CVSS4.9AI score0.00327EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/05/24 12:0 a.m.8 views

Path traversal vulnerability in report-info

report-info 1.2 and earlier does not perform path validation of the workspace directory while serving report files. Additionally, report-info does not support distributed builds. This results in a path traversal vulnerability, allowing attackers with Item/Configure permission to retrieve Surefire...

4.3CVSS5.1AI score0.00831EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/01/24 12:0 a.m.8 views

CSRF vulnerability in gitlab-branch-source

gitlab-branch-source 684.veafa7c1e2fe3 and earlier does not require POST requests for a form validation endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to connect to an attacker-specified URL. gitlab-branch-source 688.v5fa356ee8520...

4.3CVSS4.9AI score0.00323EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/01/24 12:0 a.m.8 views

Stored XSS vulnerability in qualys-pc

qualys-pc 1.0.5 and earlier does not escape Qualys API responses displayed on the job configuration page. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs. qualys-pc 1.0.6 escapes Qualys API responses displayed on the job configuratio...

8CVSS5.3AI score0.00458EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/12/13 12:0 a.m.8 views

Tokens stored and displayed in plain text by dingding-json-pusher

dingding-json-pusher 2.0 and earlier stores access tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. Additionally, the job...

4.3CVSS5AI score0.00347EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/11/29 12:0 a.m.8 views

CSRF vulnerabilities and missing permission checks in matlab allow XXE

matlab determines whether a user-specified directory on the Jenkins controller is the location of a MATLAB installation by parsing an XML file in that directory. matlab 2.11.0 and earlier does not perform permission checks in several HTTP endpoints implementing related form validation...

9.8CVSS8.3AI score0.00844EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/10/25 12:0 a.m.8 views

Missing permission check in lambdatest-automation allows enumerating credentials IDs

lambdatest-automation 1.20.9 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to enumerate credentials IDs of LAMBDATEST credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using...

4.3CVSS5.1AI score0.00394EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/10/25 12:0 a.m.8 views

Arbitrary file read vulnerability in electricflow

electricflow temporarily copies files from an agent workspace to the controller in preparation for publishing them in the 'CloudBees CD - Publish Artifact' post-build step. electricflow 1.1.32 and earlier follows symbolic links to locations outside of the temporary directory on the controller whe...

6.5CVSS6.6AI score0.01159EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/10/25 12:0 a.m.8 views

Stored XSS vulnerability in github

github 1.37.3 and earlier does not escape the GitHub project URL on the build page when showing changes. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission. github 1.37.3.1 escapes GitHub project URL on the build page when showi...

8CVSS5.3AI score0.00606EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Improper masking of credentials in pipeline-maven

pipeline-maven integrates with https://plugins.jenkins.io/config-file-provider/Config File Provider Plugin to specify custom Maven settings, including credentials for authentication. pipeline-maven 1330.v18e473854496 and earlier does not properly mask i.e., replace with asterisks usernames of...

5.3CVSS5.7AI score0.00544EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Incorrect permission checks in qualys-cs

qualys-cs 1.6.2.6 and earlier does not correctly perform a permission check in multiple HTTP endpoints. This allows attackers with global Item/Configure permission while lacking Item/Configure permission on any particular job to do the following: Enumerate credentials IDs of credentials stored in...

7.1CVSS5.1AI score0.00317EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

CSRF vulnerability in ivy

ivy 2.5 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to delete disabled modules. As of publication of this advisory, there is no fix. Learn why we announce this...

6.5CVSS6.3AI score0.00309EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in frugal-testing

frugal-testing 1.1 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to do the following: Connect to Frugal Testing using attacker-specified username and password. Retrieve test IDs and names from Frugal Testing, if a vali...

5.4CVSS4.9AI score0.00371EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Path traversal allows exploiting XSS vulnerability in jobConfigHistory

jobConfigHistory 1227.v7a79fc4dc01f and earlier does not restrict a name query parameter when rendering a history entry. This allows attackers to have Jenkins render a manipulated configuration history that was not created by the plugin. The history view does not property sanitize or escape the...

8CVSS5AI score0.0076EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Disabled permissions can be granted by ssh2easy

ssh2easy 1.4 and earlier does not verify that permissions configured to be granted are enabled. This may allow users formerly granted typically optional permissions, like Overall/Manage to access functionality they're no longer entitled to. NOTE: As a workaround, administrators can save the...

8.8CVSS7.8AI score0.00551EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Stored XSS vulnerability in tap

tap 2.3 and earlier does not escape TAP file contents. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents. As of publication of this advisory, there is no fix. Learn why we announce this...

8CVSS5.3AI score0.00542EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/08/16 12:0 a.m.8 views

Stored XSS vulnerability in shortcut-job

shortcut-job 0.4 and earlier does not escape the shortcut redirection URL. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure shortcut jobs. shortcut-job 0.5 escapes the shortcut redirection URL...

8CVSS5.3AI score0.00416EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/08/16 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in fortify allow capturing credentials

fortify 22.1.38 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

5.4CVSS5AI score0.00268EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/08/16 12:0 a.m.8 views

Stored XSS vulnerability in flaky-test-handler

flaky-test-handler 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents. flaky-test-handler 1.2.3 escapes JUnit test contents...

8CVSS5.3AI score0.00521EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/08/16 12:0 a.m.8 views

Unsafe default behavior and information disclosure in gogs-webhook webhook

gogs-webhook provides a webhook endpoint at /gogs-webhook that can be used to trigger builds of jobs. In gogs-webhook 1.0.15 and earlier, an option to specify a Gogs secret for this webhook is provided, but not enabled by default. This allows unauthenticated attackers to trigger builds of jobs...

6.5CVSS5.5AI score0.00577EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/07/12 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in benchmark-evaluator

benchmark-evaluator 1.0.1 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL and to check for the existence of directories, .csv, and .ycsb files on the Jenkins...

8.8CVSS6.6AI score0.00423EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/06/14 12:0 a.m.8 views

CSRF protection bypass vulnerability

Jenkins provides context menus for various UI elements, like links to jobs and builds, or breadcrumbs. In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided value...

8CVSS7.5AI score0.0086EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/06/14 12:0 a.m.8 views

Arbitrary file read vulnerability in aws-codecommit-trigger

aws-codecommit-trigger allows downloading activity logs of AWS Simple Queue Service SQS queues. aws-codecommit-trigger 3.0.12 and earlier does not restrict the queue name path parameter in the corresponding HTTP endpoint, allowing attackers with Item/Read permission to obtain the contents of...

6.5CVSS6.5AI score0.0063EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/06/14 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in ease-plugin

ease-plugin 2.6 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS5.8AI score0.00658EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/05/16 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in azure-vm-agents

azure-vm-agents 852.v8d35f0960a43 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to connect to an attacker-specified Azure Cloud server using attacker-specified credentials IDs obtained through another method...

8.8CVSS6.9AI score0.00578EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/05/16 12:0 a.m.8 views

SSL/TLS certificate validation unconditionally disabled by miniorange-saml-sp

miniorange-saml-sp 2.1.0 and earlier unconditionally disables SSL/TLS certificate validation for connections to miniOrange or the configured IdP to retrieve SAML metadata. This lack of validation could be abused using a man-in-the-middle attack to intercept these connections. miniorange-saml-sp...

4.8CVSS5AI score0.00244EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/05/16 12:0 a.m.8 views

Stored XSS vulnerability in testng-plugin

testng-plugin 730.v4c5283037693 and earlier does not escape several values that are parsed from TestNG report files and displayed on the plugin's test information pages. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to provide a crafted TestNG repor...

8CVSS5.3AI score0.00456EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/05/16 12:0 a.m.8 views

Secrets stored and displayed in plain text by ansible

ansible allows the specification of extra variables that can be passed to Ansible. These extra variables are commonly used to pass secrets. ansible 204.v8191fd551ebf and earlier stores these extra variables unencrypted in job config.xml files on the Jenkins controller as part of its configuration...

5.3CVSS5.1AI score0.00379EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/04/12 12:0 a.m.8 views

Lack of authentication mechanism in assembla-merge-request-builder webhook

assembla-merge-request-builder provides a webhook endpoint at /assembla-webhook/ that can be used to trigger builds of jobs configured to use a specified repository. In assembla-merge-request-builder 1.1.13 and earlier, this endpoint can be accessed without authentication. This allows...

5.3CVSS5.6AI score0.00518EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

Stored XSS vulnerability in jacoco

jacoco 3.3.2 and earlier does not escape class and method names shown on the UI. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control input files for the 'Record JaCoCo coverage report' post-build action. jacoco 3.3.2.1 escapes class and method...

8CVSS5.3AI score0.0056EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

Incorrect permission checks in role-strategy

Permissions in Jenkins can be enabled and disabled. Some permissions are disabled by default, e.g., Overall/Manage or Item/Extended Read. Disabled permissions cannot be granted directly, only through greater permissions that imply them e.g., Overall/Administer or Item/Configure. role-strategy...

9.8CVSS8.2AI score0.00828EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

XXE vulnerability in crap4j

crap4j 0.9 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control Crap Report file contents to have Jenkins parse a crafted XML document that uses external entities for extraction of secrets from the Jenkins controller or...

7.5CVSS7.3AI score0.00766EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

XXE vulnerability in vs-code-metrics

vs-code-metrics 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control VS Code Metrics File contents to have Jenkins parse a crafted XML document that uses external entities for extraction of secrets from the Jenkins...

8.2CVSS7.9AI score0.00569EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

XXE vulnerability in perfpublisher

perfpublisher 8.09 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control PerfPublisher report files to have Jenkins parse a crafted XML document that uses external entities for extraction of secrets from the Jenkins...

8.2CVSS7.8AI score0.00569EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/08 12:0 a.m.8 views

XSS vulnerability in plugin manager

Jenkins 2.270 through 2.393 both inclusive, LTS 2.277.1 through 2.375.3 both inclusive does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins in the plugin manager. This results in a stored cross-sit...

9.6CVSS7.1AI score0.0184EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/02/15 12:0 a.m.8 views

Script Security sandbox bypass vulnerability in email-ext

email-ext allows defining custom email templates using https://plugins.jenkins.io/config-file-provider/Config File Provider plugin as Jelly or Groovy files. When defined inside a https://plugins.jenkins.io/cloudbees-folder/folder, email templates need to be subject to Script Security protection...

9.9CVSS9AI score0.01095EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/01/24 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in ghprb

ghprb 1.42.2 and earlier does not perform permission checks in methods implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in...

8.8CVSS6.9AI score0.00821EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/01/24 12:0 a.m.8 views

Missing permission check in ghprb allows enumerating credentials IDs

ghprb 1.42.2 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using another vulnerability. As of...

4.3CVSS5.1AI score0.00661EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/01/24 12:0 a.m.8 views

Sandbox bypass vulnerability in script-security

script-security provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are generally safe to execute. Calls to code defined inside a sandboxed script are intercepted, and various allowlists are checked to determine whether the call is to be allowe...

8.8CVSS8.2AI score0.00585EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/12/07 12:0 a.m.8 views

Improper credentials masking in gitea

gitea support authentication with Gitea personal access tokens. In gitea 1.4.4 and earlier, the implementation of these tokens did not support credentials masking. This can expose Gitea personal access tokens in the build log, e.g., when printed as part of repository URLs. gitea 1.4.5 adds suppor...

4.3CVSS5.1AI score0.00332EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/10/19 12:0 a.m.8 views

Lack of webhook authentication mechanism in tuleap-git-branch-source

tuleap-git-branch-source provides a webhook endpoint at /tuleap-hook/ that can be used to trigger Tuleap projects configured with a specified repository. In tuleap-git-branch-source 3.2.4 and earlier, this endpoint can be accessed without authentication. This allows unauthenticated attackers to...

5.3CVSS5.6AI score0.00665EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/10/19 12:0 a.m.8 views

AWS secrets displayed without masking by s3explorer

s3explorer stores AWSSECRETACCESSKEY in its global configuration file s3explorer.xml on the Jenkins controller as part of its configuration. While this secret is stored encrypted on disk, in s3explorer 1.0.8 and earlier the global configuration form does not mask the AWSSECRETACCESSKEY form field...

5.3CVSS5.7AI score0.00512EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/10/19 12:0 a.m.8 views

CSRF protection for any URL can be bypassed in pipeline-stage-view

pipeline-stage-view provides a visualization of Pipeline builds. It also allows users to interact with input steps from Pipeline: Input Step Plugin. pipeline-stage-view 2.26 and earlier does not correctly encode the ID of input steps when using it to generate URLs to proceed or abort Pipeline...

8CVSS6.4AI score0.00443EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/10/19 12:0 a.m.8 views

Stored XSS vulnerability in contrast-continuous-application-security

contrast-continuous-application-security 3.9 and earlier does not escape data returned from the Contrast service when generating a report. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control or modify Contrast service API responses...

7.5CVSS5.3AI score0.00639EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/10/19 12:0 a.m.8 views

Content-Security-Policy protection for user content can be disabled in 360 FireLine

Jenkins sets the Content-Security-Policy header to static files served by Jenkins specifically DirectoryBrowserSupport, such as workspaces, /userContent, or archived artifacts, unless a Resource Root URL is specified. 360 FireLine 1.7.2 and earlier globally disables the Content-Security-Policy...

8CVSS5.3AI score0.00617EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/10/19 12:0 a.m.8 views

Missing permission check in job-import-plugin allows enumerating credentials IDs

job-import-plugin 3.5 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using another vulnerabilit...

4.3CVSS5.1AI score0.00537EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.8 views

Missing permission check in extreme-feedback

extreme-feedback 1.7 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to discover information about job names attached to lamps, discover MAC and IP addresses of existing lamps, and rename lamps. As of publication of this...

5.4CVSS5.6AI score0.00461EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.8 views

Agent-to-controller security bypass in wildfly-deployer allows reading arbitrary files

wildfly-deployer 1.0.2 and earlier implements functionality that allows agent processes to read arbitrary files on the Jenkins controller file system. This allows attackers able to control agent processes to read arbitrary files on the Jenkins controller file system. NOTE: This vulnerability is...

6.5CVSS5.8AI score0.00578EPSS
Exploits0Affected Software1
Total number of security vulnerabilities1464