Configuration As Code Plugin Vulnérabilités

Chronologie

Version

1.08
1.18
1.28
1.38
1.48

Contre-mesures

Official Fix0
Temporary Fix0
Workaround0
Unavailable0
Not Defined10

Exploitabilité

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined10

Vecteur d'accès

Not Defined0
Physical0
Local2
Adjacent2
Network6

Authentification

Not Defined0
High0
Low10
None0

Interaction de l'utilisateur

Not Defined0
Required0
None10

C3BM Index

CVSSv3 Base

≤10
≤20
≤32
≤42
≤54
≤62
≤70
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤32
≤42
≤54
≤62
≤70
≤80
≤90
≤100

VulDB

≤10
≤20
≤32
≤42
≤56
≤60
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤42
≤52
≤62
≤72
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k4
<2k6
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k10
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Versions (57): 0.7-alpha, 1.0, 1.1, 1.2, 1.3, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 1.10, 1.11, 1.12, 1.13, 1.14, 1.15, 1.16, 1.17, 1.18, 1.19, 1.20, 1.21, 1.22, 1.23, 1.24, 1.25, 1.26, 1.27, 1.28, 1.29, 1.30, 1.31, 1.32, 1.33, 1.34, 1.35, 1.36, 1.37, 1.38, 1.39, 1.40, 1.41, 1.42, 1.43, 1.44, 1.45, 1.46, 1.47, 1.48, 1.49, 1.50, 1.51, 1.52, 1.53, 1.54, 1.55

Type de logiciel: Jenkins Plugin

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
13/01/20222.62.6Configuration as Code Plugin Authentication Token divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-23106
07/08/20194.44.4Configuration as Code Plugin Incomplete Fix CVE-2019-10343 Log divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-10367
31/07/20194.94.9Configuration as Code Plugin divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-10363
31/07/20194.84.8Configuration as Code Plugin Configuration Import elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2019-10362
31/07/20194.44.4Configuration as Code Plugin Proxy Password Log elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-10345
31/07/20194.34.3Configuration as Code Plugin Permission Check elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-10344
31/07/20193.33.3Configuration as Code Plugin Masking Log divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-10343
26/06/20186.56.5Configuration as Code Plugin DataBoundConfigurator.java elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-1000610
26/06/20185.45.4Configuration as Code Plugin ConfigurationAsCode.java divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2018-1000609

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!