Jenkins Sårbarheter

Tidslinje

Förra året

Version

2.036
2.136
2.235
2.4333
2.327

Åtgärd

Official Fix131
Temporary Fix0
Workaround1
Unavailable0
Not Defined134

Utnyttjbarhet

High6
Functional0
Proof-of-Concept8
Unproven0
Not Defined252

Åtkomstvektor

Not Defined0
Physical0
Local6
Adjacent42
Network218

Autentisering

Not Defined0
High6
Low145
None115

Användarinteraktion

Not Defined0
Required109
None157

C3BM Index

Förra året

CVSSv3 Base

≤10
≤20
≤31
≤413
≤587
≤686
≤743
≤827
≤96
≤103

CVSSv3 Temp

≤10
≤20
≤31
≤413
≤588
≤696
≤741
≤819
≤96
≤102

VulDB

≤10
≤20
≤34
≤457
≤563
≤670
≤740
≤825
≤94
≤103

NVD

≤10
≤20
≤31
≤42
≤536
≤659
≤736
≤820
≤930
≤108

CNA

≤10
≤20
≤31
≤43
≤58
≤64
≤72
≤80
≤91
≤101

Säljare

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Utnyttja 0-dagars

<1k79
<2k135
<5k52
<10k0
<25k0
<50k0
<100k0
≥100k0

Utnyttja idag

<1k264
<2k2
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Utnyttja marknadsvolymen

Förra året

🔴 CTI Aktiviteter

Affected Versions (266): 1.0, 1.1, 1.2, 1.3, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 1.10, 1.11, 1.12, 1.13, 1.14, 1.15, 1.16, 1.17, 1.18, 1.19, 1.20, 1.21, 1.22, 1.23, 1.24, 1.25, 1.26, 1.27, 1.28, 1.29, 1.30, 1.31, 1.32, 1.33, 1.34, 1.35, 1.36, 1.37, 1.309, 1.399, 1.423, 1.424, 1.424.0.1, 1.424.1, 1.424.2, 1.424.3, 1.424.4, 1.466, 1.480, 1.481, 1.497, 1.509, 1.513, 1.523, 1.532.1, 1.549, 1.550, 1.585, 1.586, 1.625, 1.625.1, 1.637, 1.639, 1.649, 2.0, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.15, 2.16, 2.17, 2.18, 2.19, 2.20, 2.21, 2.22, 2.23, 2.24, 2.25, 2.26, 2.27, 2.28, 2.29, 2.30, 2.31, 2.32, 2.32.1, 2.33, 2.34, 2.35, 2.36, 2.37, 2.38, 2.39, 2.40, 2.41, 2.42, 2.43, 2.44, 2.45, 2.46, 2.46.1, 2.47, 2.48, 2.49, 2.50, 2.51, 2.52, 2.53, 2.54, 2.55, 2.56, 2.57, 2.58, 2.59, 2.60, 2.61, 2.62, 2.63, 2.64, 2.65, 2.66, 2.67, 2.68, 2.69, 2.70, 2.71, 2.72, 2.73, 2.73.1, 2.73.2, 2.74, 2.75, 2.76, 2.77, 2.78, 2.79, 2.80, 2.81, 2.82, 2.83, 2.84, 2.85, 2.86, 2.87, 2.88, 2.89, 2.89.1, 2.90, 2.91, 2.92, 2.93, 2.94, 2.106, 2.115, 2.120, 2.121, 2.121.1, 2.121.2, 2.132, 2.137, 2.145, 2.150.1, 2.150.2.3, 2.153, 2.158, 2.159, 2.170, 2.171, 2.185, 2.191, 2.196, 2.213, 2.218, 2.227, 2.244, 2.251, 2.274, 2.275, 2.286, 2.299, 2.314, 2.318, 2.319, 2.319.1, 2.319.2, 2.329, 2.355, 2.367, 2.368, 2.369, 2.399, 2.415, 2.423, 2.426, 2.426.1, 2.426.2, 2.441, LTE 2.107, LTE 2.107.1, LTS 1.466, LTS 1.466.1, LTS 1.651, LTS 1.651.1, LTS 2.89, LTS 2.89.1, LTS 2.89.2, LTS 2.89.3, LTS 2.107, LTS 2.107.1, LTS 2.107.2, LTS 2.138, LTS 2.138.1, LTS 2.138.2, LTS 2.138.3, LTS 2.176, LTS 2.176.1, LTS 2.176.2, LTS 2.176.3, LTS 2.204, LTS 2.204.1, LTS 2.204.2, LTS 2.204.3, LTS 2.204.4, LTS 2.204.5, LTS 2.235, LTS 2.235.1, LTS 2.235.2, LTS 2.235.3, LTS 2.263, LTS 2.263.1, LTS 2.263.2, LTS 2.277, LTS 2.277.1, LTS 2.289, LTS 2.289.1, LTS 2.303, LTS 2.303.1, LTS 2.303.2, LTS 2.319, LTS 2.319.1, LTS 2.332, LTS 2.332.1, LTS 2.332.2, LTS 2.332.3, LTS 2.333, LTS 2.387, LTS 2.387.1, LTS 2.387.2, LTS 2.387.3, LTS 2.401, LTS 2.401.1, LTS 2.401.2, LTS 2.414, LTS 2.414.1

Programvarutyp: Continuous Integration Software

PubliceradBaseTempSårbarhet0dayI dagUtnRemCTICVE
07/08/20246.36.1Jenkins My Views privilegier eskalering$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2024-43045
07/08/20246.16.1Jenkins Agent Process ClassLoaderProxy#fetchJar informationsgivning$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-43044
24/01/20247.57.4Jenkins Command Line Interface svag autentisering$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2024-23898
24/01/20247.77.7Jenkins Command Line Interface informationsgivning$0-$5k$0-$5kHighOfficial Fix0.04CVE-2024-23897
20/09/20237.17.1Jenkins Temporary Directory privilegier eskalering$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-43496
20/09/20234.44.4Jenkins Caption Parameter ExpandableDetailsNote cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-43495
20/09/20236.86.7Jenkins MultipartFormDataParser privilegier eskalering$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-43498
20/09/20236.86.8Jenkins Stapler Web Framework privilegier eskalering$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2023-43497
20/09/20233.93.9Jenkins Build Variable privilegier eskalering$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-43494
26/07/20234.44.4Jenkins URL cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-39151
14/06/20235.55.5Jenkins POST Request privilegier eskalering$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-35141
11/03/20234.44.4Jenkins Version cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-27898
11/03/20236.16.1Jenkins Local Privilege Escalation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-27899
11/03/20234.44.4Jenkins Agent Connection informationsgivning$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-27904
11/03/20235.05.0Jenkins CLI privilegier eskalering$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-27903
11/03/20235.55.5Jenkins Job Workspace privilegier eskalering$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-27902
11/03/20235.55.5Jenkins Apache Commons FileUpload förnekande av tjänsten$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-27901
11/03/20235.55.5Jenkins Apache Commons FileUpload förnekande av tjänsten$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-27900
22/09/20224.44.4Jenkins Tooltip cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-41224
27/07/20224.44.4Maven Metadata Plugin for Jenkins CI Server URL Validation cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-36905
24/06/20224.44.4Maven Metadata Plugin for Jenkins CI Server List Maven Artifact Versions cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-34190
24/06/20224.84.8Jenkins Build Button cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2022-34173
24/06/20224.84.8Jenkins Symbol-based Icons cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-34172
24/06/20224.84.8Jenkins SVG Icon cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-34171
24/06/20224.84.8Jenkins Help Icon cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-34170

241 fler poster visas inte

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!