Jenkins@1.447.3.1 Security Vulnerabilities and Issues — Jenkins@1.447.3.1 CVE List

Lucene search

CloudbeesJenkins1.447.3.1

4 matches found

CVE•added 2013/02/24 10:55 p.m.•61 views

CVE-2012-6073

Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified ve...

5.8CVSS6.6AI score0.0026EPSS

CVE•added 2013/02/24 10:55 p.m.•59 views

CVE-2012-6072

CRLF injection vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspec...

4.3CVSS6.8AI score0.00113EPSS

CVE•added 2013/02/24 10:55 p.m.•59 views

CVE-2013-0158

Unspecified vulnerability in Jenkins before 1.498, Jenkins LTS before 1.480.2, and Jenkins Enterprise 1.447.x before 1.447.6.1 and 1.466.x before 1.466.12.1, when a slave is attached and anonymous read access is enabled, allows remote attackers to obtain the master cryptographic key via unknown vec...

2.6CVSS6.1AI score0.00653EPSS

CVE•added 2013/02/24 10:55 p.m.•54 views

CVE-2012-6074

Cross-site scripting (XSS) vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote authenticated users with write access to inject arbitrary web script or HTML via unsp...

3.5CVSS5.2AI score0.00225EPSS