Known Vulnerabilities for products from Jenkins
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Jenkins".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-23905 json | 5.4 - MEDIUM | 2024-01-24 | 2024-01-29 | |
| CVE-2024-23904 json | 7.5 - HIGH | 2024-01-24 | 2024-01-29 | |
| CVE-2024-23903 json | 5.3 - MEDIUM | 2024-01-24 | 2024-01-31 | |
| CVE-2024-23902 json | 4.3 - MEDIUM | 2024-01-24 | 2024-01-31 | |
| CVE-2024-23901 json | 6.5 - MEDIUM | 2024-01-24 | 2024-01-31 | |
| CVE-2024-23900 json | 4.3 - MEDIUM | 2024-01-24 | 2024-01-31 | |
| CVE-2024-23899 json | 6.5 - MEDIUM | 2024-01-24 | 2024-01-31 | |
| CVE-2024-23898 json | 8.8 - HIGH | 2024-01-24 | 2024-01-31 | |
| CVE-2024-23897 json | 7.5 - HIGH | 2024-01-24 | 2024-01-31 | |
| CVE-2023-49674 json | 4.3 - MEDIUM | 2023-11-29 | 2023-12-05 | |
| CVE-2023-49673 json | 8.8 - HIGH | 2023-11-29 | 2023-12-05 | |
| CVE-2023-49656 json | 9.8 - CRITICAL | 2023-11-29 | 2023-12-05 | |
| CVE-2023-49655 json | 8.8 - HIGH | 2023-11-29 | 2023-12-05 | |
| CVE-2023-49654 json | 9.8 - CRITICAL | 2023-11-29 | 2023-12-05 | |
| CVE-2023-49653 json | 6.5 - MEDIUM | 2023-11-29 | 2023-12-05 | |
| CVE-2023-49652 json | 2.7 - LOW | 2023-11-29 | 2023-12-05 | |
| CVE-2023-46660 json | Jenkins Zanata Plugin 0.6 and earlier uses a non-constant time comparison function when checking whether the provided and exp... | 5.3 - MEDIUM | 2023-10-25 | 2023-11-01 |
| CVE-2023-46659 json | Jenkins Edgewall Trac Plugin 1.13 and earlier does not escape the Trac website URL on the build page, resulting in a stored c... | 5.4 - MEDIUM | 2023-10-25 | 2023-11-01 |
| CVE-2023-46658 json | Jenkins MSTeams Webhook Trigger Plugin 0.1.1 and earlier uses a non-constant time comparison function when checking whether t... | 5.3 - MEDIUM | 2023-10-25 | 2023-11-01 |
| CVE-2023-46657 json | Jenkins Gogs Plugin 1.0.15 and earlier uses a non-constant time comparison function when checking whether the provided and ex... | 5.3 - MEDIUM | 2023-10-25 | 2023-11-01 |
Known software with vulnerabilities from Jenkins
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Jenkins | 360 Fireline | 1.0 |
| Application | Jenkins | Absint Astree | 1.0.0 |
| Application | Jenkins | Active Choices | 0.1 |
| Application | Jenkins | Active Directory | 1.0 |
| Application | Jenkins | Alauda Devops Pipeline | 2.3.2 |
| Application | Jenkins | Alauda Kubernetes Support | 2.0.0 |
| Application | Jenkins | Amazon Ec2 | 1.0 |
| Application | Jenkins | Amazon Sns Build Notifier | - |
| Application | Jenkins | Amazon Web Services Serverless Application Model | 1.2.2 |
| Application | Jenkins | Amazon Web Services Service Application Model | 1.2.2 |
| Application | Jenkins | Anchore Container Image Scanner | 1.0.0 |
| Application | Jenkins | Android Lint | 1.0 |
| Application | Jenkins | Ansible | 0.1 |
| Application | Jenkins | Ansible Tower | 0.5.0 |
| Application | Jenkins | Appdynamics | 1.0.0 |
| Application | Jenkins | Applatix | - |
| Application | Jenkins | Appspider | 1.0.12 |
| Application | Jenkins | Aqua Microscanner | 1.0.0 |
| Application | Jenkins | Aqua Security Scanner | - |
| Application | Jenkins | Aqua Security Severless Scanner | 1.0.0 |