Cloudbees Vulnerabilidades

Curso de tempo

Tipo

Produto

CloudBees Jenkins66
CloudBees AWS Credentials Plugin4
CloudBees Jenkins Operations Center2
CloudBees Docker Hub Registry Notification Plugin2

Medidas

Official Fix64
Temporary Fix0
Workaround0
Unavailable0
Not Defined10

Explorabilidade

High2
Functional0
Proof-of-Concept2
Unproven0
Not Defined70

Tipo de acesso

Not Defined0
Physical0
Local0
Adjacent4
Network70

Autenticação

Not Defined0
High0
Low26
None48

Actividade do utilizador

Not Defined0
Required40
None34

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤46
≤526
≤618
≤712
≤88
≤92
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤46
≤526
≤626
≤710
≤84
≤90
≤102

VulDB

≤10
≤20
≤30
≤46
≤524
≤614
≤710
≤816
≤92
≤102

NVD

≤10
≤20
≤30
≤40
≤510
≤62
≤72
≤84
≤90
≤104

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fabricante

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explorar 0 dia

<1k18
<2k30
<5k26
<10k0
<25k0
<50k0
<100k0
≥100k0

Explorar hoje

<1k72
<2k2
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Explorar o volume do mercado

🔴 CTI Actividades

Affected Products (6): AWS Credentials Plugin (3), Directory (1), Docker Hub Registry Notification Plugin (1), Enterprise (1), Jenkins (67), Jenkins Operations Center (1)

Link to Vendor Website: https://www.cloudbees.com/

Publicado emBaseTempVulnerabilidadeProdExpMasCTIEPSSCVE
15/11/20226.96.9CloudBees Docker Hub Registry Notification Plugin direitos alargadosVirtualization SoftwareNot DefinedNot Defined0.000.00064CVE-2022-45385
16/03/20224.34.3CloudBees AWS Credentials Plugin Falsificação de Pedido Cross SiteCloud SoftwareNot DefinedNot Defined0.000.00068CVE-2022-27198
16/03/20225.55.5CloudBees AWS Credentials Plugin direitos alargadosJenkins PluginNot DefinedNot Defined0.000.00054CVE-2022-27199
18/03/20214.94.9CloudBees AWS Credentials Plugin direitos alargadosJenkins PluginNot DefinedNot Defined0.000.00054CVE-2021-21625
19/04/20197.57.5CloudBees Jenkins Operations Center Configuration Page Credentials direitos alargadosContinuous Integration SoftwareNot DefinedNot Defined0.000.00418CVE-2019-11350
17/05/20165.95.7CloudBees Jenkins API URL xml Divulgação de InformaçãoContinuous Integration SoftwareNot DefinedOfficial Fix0.000.00152CVE-2016-3727
17/05/20167.47.2CloudBees Jenkins RedirectContinuous Integration SoftwareNot DefinedOfficial Fix0.020.00268CVE-2016-3726
17/05/20165.95.7CloudBees Jenkins Updater direitos alargadosContinuous Integration SoftwareNot DefinedOfficial Fix0.000.00155CVE-2016-3725
17/05/20167.06.8CloudBees Jenkins Job Configuration Password Divulgação de InformaçãoContinuous Integration SoftwareNot DefinedOfficial Fix0.000.00152CVE-2016-3724
17/05/20165.95.7CloudBees Jenkins XML/JSON API Endpoint Divulgação de InformaçãoContinuous Integration SoftwareNot DefinedOfficial Fix0.000.00152CVE-2016-3723

64 as entradas adicionais não são mais exibidas

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!