Cloudbees

Jenkins

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2012-0785

  • EPSS 1.94%
  • Veröffentlicht 24.02.2020 17:15:13
  • Zuletzt bearbeitet 21.11.2024 01:35:43

Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "th...

6.8

CVE-2013-2034

  • EPSS 0.75%
  • Veröffentlicht 14.05.2014 19:55:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for re...

2.1

CVE-2013-2033

  • EPSS 0.18%
  • Veröffentlicht 10.04.2014 20:29:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with write permission to inject arbitrary web script or HTML...

4.3

CVE-2012-6072

  • EPSS 0.11%
  • Veröffentlicht 24.02.2013 22:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

CRLF injection vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to inject arbitrary HTTP headers and c...

5.8

CVE-2012-6073

  • EPSS 0.26%
  • Veröffentlicht 24.02.2013 22:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to redirect users to arbitrary web site...

3.5

CVE-2012-6074

  • EPSS 0.23%
  • Veröffentlicht 24.02.2013 22:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote authenticated users with write acces...

2.6

CVE-2013-0158

  • EPSS 0.65%
  • Veröffentlicht 24.02.2013 22:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Jenkins before 1.498, Jenkins LTS before 1.480.2, and Jenkins Enterprise 1.447.x before 1.447.6.1 and 1.466.x before 1.466.12.1, when a slave is attached and anonymous read access is enabled, allows remote attackers to ob...

4.3

CVE-2012-0324

  • EPSS 0.21%
  • Veröffentlicht 09.03.2012 11:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Jenkins before 1.454, Jenkins LTS before 1.424.5, and Jenkins Enterprise 1.400.x before 1.400.0.13 and 1.424.x before 1.424.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified...

4.3

CVE-2012-0325

  • EPSS 0.21%
  • Veröffentlicht 09.03.2012 11:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Jenkins before 1.454, Jenkins LTS before 1.424.5, and Jenkins Enterprise 1.400.x before 1.400.0.13 and 1.424.x before 1.424.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified...