Known Vulnerabilities for Generic Webhook Trigger by Jenkins
Listed below are 3 of the newest known vulnerabilities associated with "Generic Webhook Trigger" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-43412 json | Jenkins Generic Webhook Trigger Plugin 1.84.1 and earlier uses a non-constant time comparison function when checking whether ... | 5.3 - MEDIUM | 2022-10-19 | 2023-11-01 |
| CVE-2022-25185 json | Jenkins Generic Webhook Trigger Plugin 1.81 and earlier does not escape the build cause when using the webhook, resulting in ... | 5.4 - MEDIUM | 2022-02-15 | 2023-11-03 |
| CVE-2021-21669 json | Jenkins Generic Webhook Trigger Plugin 1.72 and earlier does not configure its XML parser to prevent XML external entity (XXE... | 9.8 - CRITICAL | 2021-06-18 | 2023-10-25 |