Cloudbees Schwachstellen

Zeitverlauf

Typ

Continuous Integration Software	62
Cloud Software	6
Jenkins Plugin	4
Virtualization Software	2

Produkt

CloudBees Jenkins	60
CloudBees AWS Credentials Plugin	6
CloudBees Jenkins Operations Center	2
CloudBees Docker Hub Registry Notification Plugin	2
CloudBees Directory	2

Massnahmen

Official Fix	62
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	12

Ausnutzbarkeit

High	2
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	70

Zugriffsart

Not Defined	0
Physical	0
Local	0
Adjacent	6
Network	68

Authentisierung

Not Defined	0
High	0
Low	26
None	48

Benutzeraktivität

Not Defined	0
Required	42
None	32

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	8
≤5	18
≤6	16
≤7	16
≤8	12
≤9	2
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	8
≤5	18
≤6	24
≤7	16
≤8	4
≤9	2
≤10	2

VulDB

≤1	0
≤2	0
≤3	0
≤4	8
≤5	16
≤6	18
≤7	14
≤8	12
≤9	4
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	4
≤6	2
≤7	6
≤8	2
≤9	4
≤10	4

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	16
<2k	40
<5k	18
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	72
<2k	2
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (6): AWS Credentials Plugin (3), Directory (1), Docker Hub Registry Notification Plugin (1), Enterprise (1), Jenkins (67), Jenkins Operations Center (1)

Link to Vendor Website: https://www.cloudbees.com/

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
15.11.2022	6.9	6.9	CloudBees Docker Hub Registry Notification Plugin erweiterte Rechte	Virtualization Software	Not Defined	Not Defined	0.00064	0.00	CVE-2022-45385
16.03.2022	4.3	4.3	CloudBees AWS Credentials Plugin Cross Site Request Forgery	Cloud Software	Not Defined	Not Defined	0.00068	0.00	CVE-2022-27198
16.03.2022	5.5	5.5	CloudBees AWS Credentials Plugin erweiterte Rechte	Jenkins Plugin	Not Defined	Not Defined	0.00054	0.00	CVE-2022-27199
18.03.2021	4.9	4.9	CloudBees AWS Credentials Plugin erweiterte Rechte	Jenkins Plugin	Not Defined	Not Defined	0.00054	0.00	CVE-2021-21625
19.04.2019	7.5	7.5	CloudBees Jenkins Operations Center Configuration Page Credentials erweiterte Rechte	Continuous Integration Software	Not Defined	Not Defined	0.00502	0.04	CVE-2019-11350
17.05.2016	5.9	5.7	CloudBees Jenkins API URL xml Information Disclosure	Continuous Integration Software	Not Defined	Official Fix	0.00152	0.00	CVE-2016-3727
17.05.2016	7.4	7.2	CloudBees Jenkins Redirect	Continuous Integration Software	Not Defined	Official Fix	0.00268	0.02	CVE-2016-3726
17.05.2016	5.9	5.7	CloudBees Jenkins Updater erweiterte Rechte	Continuous Integration Software	Not Defined	Official Fix	0.00155	0.00	CVE-2016-3725
17.05.2016	7.0	6.8	CloudBees Jenkins Job Configuration Password Information Disclosure	Continuous Integration Software	Not Defined	Official Fix	0.00152	0.00	CVE-2016-3724
17.05.2016	5.9	5.7	CloudBees Jenkins XML/JSON API Endpoint Information Disclosure	Continuous Integration Software	Not Defined	Official Fix	0.00152	0.00	CVE-2016-3723

64 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 64 results.

◂ ZurückÜbersichtWeiter ▸

Do you need the next level of professionalism?

Upgrade your account now!