Rapiddeploy Security Vulnerabilities and Issues — Rapiddeploy CVE List

Lucene search

JenkinsRapiddeploy

4 matches found

CVE•added 2020/03/25 5:15 p.m.•61 views

CVE-2020-2171

Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

8.8CVSS8.6AI score0.00132EPSS

CVE•added 2019/12/17 3:15 p.m.•56 views

CVE-2019-16570

A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers to connect to an attacker-specified web server.

8.8CVSS8.6AI score0.0011EPSS

CVE•added 2019/12/17 3:15 p.m.•54 views

CVE-2019-16571

A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server.

4.3CVSS4.4AI score0.00031EPSS

CVE•added 2020/03/25 5:15 p.m.•50 views

CVE-2020-2170

Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability.

5.4CVSS5.2AI score0.00233EPSS