Jenkins Security Vulnerabilities and Issues — Jenkins CVE List

Lucene search

CloudbeesJenkins

2 matches found

CVE•added 2014/04/10 8:29 p.m.•68 views

CVE-2013-2033

Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with write permission to inject arbitrary web script or HTML via unspecified vectors.

2.1CVSS5.2AI score0.00178EPSS

CVE•added 2013/02/24 10:55 p.m.•59 views

CVE-2013-0158

Unspecified vulnerability in Jenkins before 1.498, Jenkins LTS before 1.480.2, and Jenkins Enterprise 1.447.x before 1.447.6.1 and 1.466.x before 1.466.12.1, when a slave is attached and anonymous read access is enabled, allows remote attackers to obtain the master cryptographic key via unknown vec...

2.6CVSS6.1AI score0.00653EPSS