Cloudbees Vulnerabilità

Sequenza temporale

Genere

Continuous Integration Software68
Jenkins Plugin4
Cloud Software2

Prodotto

CloudBees Jenkins66
CloudBees AWS Credentials Plugin4
CloudBees Jenkins Operations Center2
CloudBees Directory2

Contromisure

Official Fix68
Temporary Fix0
Workaround0
Unavailable0
Not Defined6

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined74

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent4
Network70

Autenticazione

Not Defined0
High0
Low20
None54

Interazione dell'utente

Not Defined0
Required44
None30

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤44
≤524
≤616
≤716
≤88
≤94
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤44
≤524
≤630
≤76
≤86
≤92
≤102

VulDB

≤10
≤20
≤30
≤44
≤522
≤614
≤716
≤812
≤94
≤102

NVD

≤10
≤20
≤30
≤40
≤58
≤60
≤70
≤84
≤92
≤104

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k18
<2k38
<5k18
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k74
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Products (6): AWS Credentials Plugin (3), Directory (1), Docker Hub Registry Notification Plugin (1), Enterprise (1), Jenkins (67), Jenkins Operations Center (1)

Link to Vendor Website: https://www.cloudbees.com/

Data di pubblicazioneBaseTempVulnerabilitàProdSfrConEPSSCTICVE
15/11/20226.96.9CloudBees Docker Hub Registry Notification Plugin escalazione di privilegiVirtualization SoftwareNot DefinedNot Defined0.000640.00CVE-2022-45385
16/03/20224.34.3CloudBees AWS Credentials Plugin cross site request forgeryCloud SoftwareNot DefinedNot Defined0.000680.00CVE-2022-27198
16/03/20225.55.5CloudBees AWS Credentials Plugin escalazione di privilegiJenkins PluginNot DefinedNot Defined0.000540.00CVE-2022-27199
18/03/20214.94.9CloudBees AWS Credentials Plugin escalazione di privilegiJenkins PluginNot DefinedNot Defined0.000540.00CVE-2021-21625
19/04/20197.57.5CloudBees Jenkins Operations Center Configuration Page Credentials escalazione di privilegiContinuous Integration SoftwareNot DefinedNot Defined0.005020.04CVE-2019-11350
17/05/20165.95.7CloudBees Jenkins API URL xml rivelazione di un 'informazioneContinuous Integration SoftwareNot DefinedOfficial Fix0.001520.00CVE-2016-3727
17/05/20167.47.2CloudBees Jenkins RedirectContinuous Integration SoftwareNot DefinedOfficial Fix0.002680.02CVE-2016-3726
17/05/20165.95.7CloudBees Jenkins Updater escalazione di privilegiContinuous Integration SoftwareNot DefinedOfficial Fix0.001550.00CVE-2016-3725
17/05/20167.06.8CloudBees Jenkins Job Configuration Password rivelazione di un 'informazioneContinuous Integration SoftwareNot DefinedOfficial Fix0.001520.00CVE-2016-3724
17/05/20165.95.7CloudBees Jenkins XML/JSON API Endpoint rivelazione di un 'informazioneContinuous Integration SoftwareNot DefinedOfficial Fix0.001520.00CVE-2016-3723

64 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 64 results.

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!