Lucene search

Session Takeover

🗓️ 02 May 2019 04:00:56Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 14 Views

Vulnerability in jenkins, enabling session takeover via clickjacking

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 11
Prion	Code injection	17 Oct 201415:55	–	prion
UbuntuCve	CVE-2014-2063	17 Oct 201400:00	–	ubuntucve
CVE	CVE-2014-2063	17 Oct 201415:55	–	cve
Github Security Blog	Jenkins Vulnerable to Clickjacking	17 May 202203:53	–	github
Cvelist	CVE-2014-2063	17 Oct 201415:00	–	cvelist
OSV	GHSA-W3F5-GQ7J-M797 Jenkins Vulnerable to Clickjacking	17 May 202203:53	–	osv
OSV	RHBA-2014:1630 Red Hat Bug Fix Advisory: Red Hat OpenShift Enterprise 2.1 jenkins-plugin-openshift bug fix update	15 Sep 202422:07	–	osv
NVD	CVE-2014-2063	17 Oct 201415:55	–	nvd
OpenVAS	Jenkins Multiple Vulnerabilities (Feb 2014) - Linux	5 Aug 201600:00	–	openvas
OpenVAS	Jenkins Multiple Vulnerabilities (Feb 2014) - Windows	21 Dec 201500:00	–	openvas

Vulners

Node

jenkins jenkinsMatch1.554.2_1.el6op

jenkins jenkinsMatch1.498_1.1.el6op

jenkins jenkinsMatch1.506_1.el6op

jenkins jenkinsMatch1.509.1_1.el6op

jenkins jenkinsMatch1.502_1.el6op

jenkins jenkinsMatch1.488_2.el6op

jenkins-plugin-openshift jenkins-plugin-openshiftMatch0.6.37.1_0.el6op

jenkins-plugin-openshift jenkins-plugin-openshiftMatch0.6.25_1.el6op

jenkins-plugin-openshift jenkins-plugin-openshiftMatch0.6.28_1.el6op

jenkins-plugin-openshift jenkins-plugin-openshiftMatch0.6.5_0.el6op

jenkins-plugin-openshift jenkins-plugin-openshiftMatch0.6.20_0.el6op

jenkins-plugin-openshift jenkins-plugin-openshiftMatch0.6.19_0.el6op

jenkins-plugin-openshift jenkins-plugin-openshiftMatch0.6.16_0.el6op

openshift-origin-cartridge-jenkins openshift-origin-cartridge-jenkinsMatch1.20.3.3_1.el6op

openshift-origin-cartridge-jenkins openshift-origin-cartridge-jenkinsMatch1.9.8_1.el6op

openshift-origin-cartridge-jenkins openshift-origin-cartridge-jenkinsMatch1.16.1_2.el6op

openshift-origin-cartridge-jenkins openshift-origin-cartridge-jenkinsMatch1.20.3.4_1.el6op

Source	Link
access	www.access.redhat.com/security/cve/CVE-2014-2063
access	www.access.redhat.com/security/cve/CVE-2014-3667
access	www.access.redhat.com/security/cve/CVE-2014-2061
access	www.access.redhat.com/security/cve/CVE-2014-3666
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/security/cve/CVE-2014-2067
access	www.access.redhat.com/security/cve/CVE-2014-2062
access	www.access.redhat.com/security/cve/CVE-2014-2064
access	www.access.redhat.com/security/cve/CVE-2014-3678
access	www.access.redhat.com/security/cve/CVE-2014-2065

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 May 2019 04:56Current

6.1Medium risk

Vulners AI Score6.1

CVSS27.5

EPSS0.00169