Known Vulnerabilities for Blue Ocean by Jenkins
Listed below are 10 of the newest known vulnerabilities associated with "Blue Ocean" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-40341 json | A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.27.5 and earlier allows attackers to connect... | 8.8 - HIGH | 2023-08-16 | 2023-08-18 |
| CVE-2022-30954 json | Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attacker... | 6.5 - MEDIUM | 2022-05-17 | 2023-11-03 |
| CVE-2022-30953 json | A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect... | 6.5 - MEDIUM | 2022-05-17 | 2023-11-03 |
| CVE-2022-30952 json | Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access cr... | 6.5 - MEDIUM | 2022-05-17 | 2023-11-03 |
| CVE-2020-2255 json | A missing permission check in Jenkins Blue Ocean Plugin 1.23.2 and earlier allows attackers with Overall/Read permission to c... | 4.3 - MEDIUM | 2020-09-16 | 2023-10-25 |
| CVE-2020-2254 json | Jenkins Blue Ocean Plugin 1.23.2 and earlier provides an undocumented feature flag that, when enabled, allows an attacker wit... | 6.5 - MEDIUM | 2020-09-16 | 2023-10-25 |
| CVE-2019-1003013 json | An cross-site scripting vulnerability exists in Jenkins Blue Ocean Plugins 1.10.1 and earlier in blueocean-commons/src/main/j... | 5.4 - MEDIUM | 2019-02-06 | 2023-10-25 |
| CVE-2019-1003012 json | A data modification vulnerability exists in Jenkins Blue Ocean Plugins 1.10.1 and earlier in blueocean-core-js/src/js/bundleS... | 6.5 - MEDIUM | 2019-02-06 | 2023-10-25 |
| CVE-2017-1000110 json | Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories ... | 4.3 - MEDIUM | 2017-10-05 | 2019-10-03 |
| CVE-2017-1000106 json | Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories ... | 8.5 - HIGH | 2017-10-05 | 2019-10-03 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Jenkins | Blue Ocean | 1.9.0 | |||
| Application | Jenkins | Blue Ocean | 1.8.4 | |||
| Application | Jenkins | Blue Ocean | 1.8.3 | |||
| Application | Jenkins | Blue Ocean | 1.8.2 | |||
| Application | Jenkins | Blue Ocean | 1.8.1 | |||
| Application | Jenkins | Blue Ocean | 1.8.0 | |||
| Application | Jenkins | Blue Ocean | 1.7.2 | |||
| Application | Jenkins | Blue Ocean | 1.7.1 | |||
| Application | Jenkins | Blue Ocean | 1.7.0 | |||
| Application | Jenkins | Blue Ocean | 1.6.2 | |||
| Application | Jenkins | Blue Ocean | 1.6.1 | |||
| Application | Jenkins | Blue Ocean | 1.6.0 | |||
| Application | Jenkins | Blue Ocean | 1.5.2 | |||
| Application | Jenkins | Blue Ocean | 1.5.1 | |||
| Application | Jenkins | Blue Ocean | 1.5.0 | |||
| Application | Jenkins | Blue Ocean | 1.4.2 | |||
| Application | Jenkins | Blue Ocean | 1.4.1 | |||
| Application | Jenkins | Blue Ocean | 1.4.0 | |||
| Application | Jenkins | Blue Ocean | 1.3.5 | |||
| Application | Jenkins | Blue Ocean | 1.3.4 |