Sounds Security Vulnerabilities and Issues — Sounds CVE List

Lucene search

JenkinsSounds

2 matches found

CVE•added 2020/01/15 4:15 p.m.•58 views

CVE-2020-2097

Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins.

8.8CVSS8.9AI score0.00103EPSS

CVE•added 2020/01/15 4:15 p.m.•52 views

CVE-2020-2098

A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the OS user account running Jenkins.

9.3CVSS8.9AI score0.00167EPSS