Download
| Alert*
oval:org.secpod.oval:def:55569
The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle issues in build environment. Successful exploitation could allow remote authenti ... oval:org.secpod.oval:def:55570 The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle users with multiple accounts. Successful exploitation could allow attackers to cause a d ... oval:org.secpod.oval:def:55571 The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle permission issues. Successful exploitation could allow attackers to obtain sensiti ... oval:org.secpod.oval:def:55573 The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a missing permissions check. Successful exploitation could allow remote authenticated us ... oval:org.secpod.oval:def:55574 The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to multiple open redirect vulnerabilities. The flaws are present in the application, which fails to properly handle scheme-relative URLs. Successful exploitation could allow remote attackers to r ... oval:org.secpod.oval:def:55575 The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle issues in the API URL. Successful exploitation could allow remote authenticated us ... oval:org.secpod.oval:def:55593 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in AES ECB block cipher mode. Successful exploitation could allow attacke ... oval:org.secpod.oval:def:55594 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to create new items ... oval:org.secpod.oval:def:55595 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle an issue in remote API. Successful exploitation could allow attackers to view node mo ... oval:org.secpod.oval:def:55596 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in parameter names and descriptions. Successful exploitation could allow att ... oval:org.secpod.oval:def:55597 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege vulnerability. A flaw is present in the application, which fails to properly handle an issue in blacklisting of pipeline metadata files.Successful exploitation could allow attacker ... oval:org.secpod.oval:def:55598 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in config.xml API. Successful exploitation could allow attackers to obtai ... oval:org.secpod.oval:def:55599 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to cause unauthorize ... oval:org.secpod.oval:def:55600 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in the internal API. Successful exploitation could allow attackers to obt ... oval:org.secpod.oval:def:55601 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in console notes. Successful exploitation could allow attackers to cause una ... oval:org.secpod.oval:def:55603 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in search suggestions. Successful exploitation could allow attackers to o ... oval:org.secpod.oval:def:55604 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in search suggestions. Successful exploitation could allow attackers to caus ... oval:org.secpod.oval:def:55605 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to trigger backgroun ... oval:org.secpod.oval:def:55606 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to cause disruption ... oval:org.secpod.oval:def:55607 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a CSRF vulnerability. A flaw is present in the application, which fails to properly handle an issue in GET requests. Successful exploitation could allow attackers to cause unauthorized modific ... oval:org.secpod.oval:def:55637 The host is installed with Jenkins LTS before 2.89.4 or Jenkins rolling release before 2.107 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle an issue in input validation. Successful exploitation could allow attackers with Ove ... |