Jenkins

jenkins

Vendor: Jenkins • 259 CVEs

CVEs (259)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-27898 1Jenkins 1Jenkins Feb 28, 2025 Mar 10, 2023 N/A· v4 9.6 CRITICAL· v3 N/A· v2 Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the cur...Show more Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide plugins to the configured update sites and have this message shown by Jenkins instances.Show less
CVE-2022-41224 1Jenkins 1Jenkins May 28, 2025 Sep 21, 2022 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Jenkins 2.367 through 2.369 (both inclusive) does not escape tooltips of the l:helpIcon UI component used for some help icons on the Jenkins web UI, resulting in a stored cross-site scripting (XSS) vulnerability exploita...Show more Jenkins 2.367 through 2.369 (both inclusive) does not escape tooltips of the l:helpIcon UI component used for some help icons on the Jenkins web UI, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control tooltips for this component.Show less
CVE-2022-2048 4Debian EclipseJenkins+1 more 8Debian Linux Element Plug In For Vcenter ServerHci Compute Node+5 more Nov 21, 2024 Jul 7, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can...Show more In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no enough resources left to process good requests.Show less
CVE-2022-34175 1Jenkins 1Jenkins Nov 21, 2024 Jun 23, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Jenkins 2.335 through 2.355 (both inclusive) allows attackers in some cases to bypass a protection mechanism, thereby directly accessing some view fragments containing sensitive information, bypassing any permission chec...Show more Jenkins 2.335 through 2.355 (both inclusive) allows attackers in some cases to bypass a protection mechanism, thereby directly accessing some view fragments containing sensitive information, bypassing any permission checks in the corresponding view.Show less
CVE-2022-34174 1Jenkins 1Jenkins Nov 21, 2024 Jun 23, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login form allows distinguishing between login attempts with an invalid username, and login attempts with a valid username an...Show more In Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login form allows distinguishing between login attempts with an invalid username, and login attempts with a valid username and wrong password, when using the Jenkins user database security realm.Show less
CVE-2022-34173 1Jenkins 1Jenkins Nov 21, 2024 Jun 23, 2022 N/A· v4 5.4 MEDIUM· v3 4.3 MEDIUM· v2 In Jenkins 2.340 through 2.355 (both inclusive) the tooltip of the build button in list views supports HTML without escaping the job display name, resulting in a cross-site scripting (XSS) vulnerability exploitable by at...Show more In Jenkins 2.340 through 2.355 (both inclusive) the tooltip of the build button in list views supports HTML without escaping the job display name, resulting in a cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.Show less
CVE-2022-34172 1Jenkins 1Jenkins Nov 21, 2024 Jun 23, 2022 N/A· v4 5.4 MEDIUM· v3 4.3 MEDIUM· v2 In Jenkins 2.340 through 2.355 (both inclusive) symbol-based icons unescape previously escaped values of 'tooltip' parameters, resulting in a cross-site scripting (XSS) vulnerability.
CVE-2022-34171 1Jenkins 1Jenkins Nov 21, 2024 Jun 23, 2022 N/A· v4 5.4 MEDIUM· v3 4.3 MEDIUM· v2 In Jenkins 2.321 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the HTML output generated for new symbol-based SVG icons includes the 'title' attribute of 'l:ionicon' (until Jenkins 2...Show more In Jenkins 2.321 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the HTML output generated for new symbol-based SVG icons includes the 'title' attribute of 'l:ionicon' (until Jenkins 2.334) and 'alt' attribute of 'l:icon' (since Jenkins 2.335) without further escaping, resulting in a cross-site scripting (XSS) vulnerability.Show less
CVE-2022-34170 1Jenkins 1Jenkins Nov 21, 2024 Jun 23, 2022 N/A· v4 5.4 MEDIUM· v3 4.3 MEDIUM· v2 In Jenkins 2.320 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the help icon does not escape the feature name that is part of its tooltip, effectively undoing the fix for SECURITY-19...Show more In Jenkins 2.320 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the help icon does not escape the feature name that is part of its tooltip, effectively undoing the fix for SECURITY-1955, resulting in a cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.Show less
CVE-2022-0538 1Jenkins 1Jenkins Nov 21, 2024 Feb 9, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Jenkins 2.333 and earlier, LTS 2.319.2 and earlier defines custom XStream converters that have not been updated to apply the protections for the vulnerability CVE-2021-43859 and allow unconstrained resource usage.
CVE-2021-43859 5Debian FedoraprojectJenkins+2 more 11Commerce Guided Search Communications Brm Elastic Charging EngineCommunications Cloud Native Core Automated Test Suite+8 more Nov 3, 2025 Feb 1, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel exe...Show more XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulating the processed input stream. XStream 1.4.19 monitors and accumulates the time it takes to add elements to collections and throws an exception if a set threshold is exceeded. Users are advised to upgrade as soon as possible. Users unable to upgrade may set the NO_REFERENCE mode to prevent recursion. See GHSA-rmr5-cpv2-vgjf for further details on a workaround if an upgrade is not possible.Show less
CVE-2022-20612 2Jenkins Oracle 2Communications Cloud Native Core Automated Test Suite Jenkins Nov 21, 2024 Jan 12, 2022 N/A· v4 4.3 MEDIUM· v3 2.6 LOW· v2 A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and earlier, LTS 2.319.1 and earlier allows attackers to trigger build of job without parameters when no security realm is set.
CVE-2021-21697 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 Jenkins 2.318 and earlier, LTS 2.303.2 and earlier allows any agent to read and write the contents of any build directory stored in Jenkins with very few restrictions.
CVE-2021-21696 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not limit agent read/write access to the libs/ directory inside build directories when using the FilePath APIs, allowing attackers in control of agent processes to...Show more Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not limit agent read/write access to the libs/ directory inside build directories when using the FilePath APIs, allowing attackers in control of agent processes to replace the code of a trusted library with a modified variant. This results in unsandboxed code execution in the Jenkins controller process.Show less
CVE-2021-21695 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 FilePath#listFiles lists files outside directories that agents are allowed to access when following symbolic links in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
CVE-2021-21694 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 FilePath#toURI, FilePath#hasSymlink, FilePath#absolutize, FilePath#isDescendant, and FilePath#get*DiskSpace do not check any permissions in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
CVE-2021-21693 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 When creating temporary files, agent-to-controller access to create those files is only checked after they've been created in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
CVE-2021-21692 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 FilePath#renameTo and FilePath#moveAllChildrenTo in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier only check 'read' agent-to-controller access permission on the source path, instead of 'delete'.
CVE-2021-21691 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Creating symbolic links is possible without the 'symlink' agent-to-controller access control permission in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
CVE-2021-21690 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Agent processes are able to completely bypass file path filtering by wrapping the file operation in an agent file path in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.

Previous 1 234 5...13 Next