Jenkins Project Latest Vulnerabilities

November 13

Julesploit Vulnerability Allows Bypass of Security Restrictions in Jenkins

CVE-2024-52554
Jenkins

Jenkins Authorize Plugin Vulnerable to XSS Attacks

CVE-2024-52552
Jenkins

Security Plugin Flaw Allows Controller File System Access

CVE-2024-52549
Jenkins

Jenkins Pipeline Vulnerability Allows Unauthorized Restart of Builds

CVE-2024-52551
Jenkins

Jenkins OpenId Connect Authentication Plugin Does Not Invalidate Previous Sessions on Login

CVE-2024-52553
Jenkins

October 2

CVE-2024-47804
JenkinsJenkins4.3MEDIUM

CVE-2024-47805
JenkinsCredentials7.5HIGH

CVE-2024-47803
JenkinsJenkins4.3MEDIUM

August 7

Jenkins Vulnerability Allows Access to Other Users' Views Without Permission

CVE-2024-43045
JenkinsJenkins6.3MEDIUM

Jenkins Vulnerability Allows Agent Processes to Read Arbitrary Files

CVE-2024-43044
JenkinsJenkins🔥😄👾8.8HIGH

June 26

Bitbucket OAuth Access Token Disclosure Vulnerability

CVE-2024-39460
JenkinsJenkins Bitbucket Bran...

Unencrypted Secret File Credentials Stored on Jenkins Controller File System

CVE-2024-39459
JenkinsJenkins Plain Credenti...

Jenkins Structs Plugin May Accidentally Expose Secrets Through Logs

CVE-2024-39458
JenkinsJenkins Structs Plugin

May 24

Jenkins Report Info Plugin Vulnerability Allows Attackers to Access Controller File System

CVE-2024-5273
JenkinsJenkins Report Info Pl...

May 2

Jenkins Plugin Disables Security Fix for CVE-2016-3721

CVE-2024-34148
JenkinsJenkins Subversion Par...

Unencrypted Telegram Bot Token in Jenkins Controller's Global Configuration File

CVE-2024-34147
JenkinsJenkins Telegram Bot P...

Git repository access vulnerability in Jenkins Git server Plugin

CVE-2024-34146
JenkinsJenkins Git Server Plugin

Sandbox Bypass Vulnerability in Jenkins Script Security Plugin Allows Arbitrary Code Execution

CVE-2024-34145
JenkinsJenkins Script Securit...

Sandbox Bypass Vulnerability in Jenkins Script Security Plugin Allows Arbitrary Code Execution

CVE-2024-34144
JenkinsJenkins Script Securit...👾

March 6

SSL/TLS Certificate Validation Bypass in Jenkins Delphix Plugin

CVE-2024-28162
JenkinsJenkins Delphix Plugin

Disabling SSL/TLS Certificate Validation for Data Control Tower Connections

CVE-2024-28161
JenkinsJenkins Delphix Plugin

Jenkins iceScrum Plugin vulnerable to XSS exploitation

CVE-2024-28160
JenkinsJenkins Icescrum Plugin

Attackers Can Trigger Builds with Item/Read Permission

CVE-2024-28159
JenkinsJenkins Subversion Par...

CSRF Vulnerability in Jenkins Subversion Partial Release Manager Plugin

CVE-2024-28158
JenkinsJenkins Subversion Par...

Jenkins GitBucket Plugin vulnerable to XSS exploitation

CVE-2024-28157
JenkinsJenkins Gitbucket Plugin

Jenkins Build Monitor View Plugin vulnerable to XSS exploitation

CVE-2024-28156
JenkinsJenkins Build Monitor ...

Jenkins AppSpider Plugin vulnerability allows attackers to access sensitive information

CVE-2024-28155
JenkinsJenkins Appspider Plugin

Jenkins MQ Notifier Plugin Logs Sensitive Build Parameters by Default

CVE-2024-28154
JenkinsJenkins MQ Notifier Pl...

Jenkins Dependency-Check Plugin vulnerable to Stored XSS

CVE-2024-28153
JenkinsJenkins Owasp Dependen...

Security Vulnerability in Jenkins Bitbucket Branch Source Plugin Allows Changes to Jenkinsfiles from Unauthorized Users

CVE-2024-28152
JenkinsJenkins Bitbucket Bran...

Invalid Symbolic Links in Report Directories Leave Jenkins Controllers Vulnerable to Attack

CVE-2024-28151
JenkinsJenkins Html Publisher...

Jenkins HTML Publisher Plugin vulnerable to stored XSS

CVE-2024-28150
JenkinsJenkins Html Publisher...

Jenkins HTML Publisher Plugin vulnerability allows XSS attacks and path disclosure

CVE-2024-28149
JenkinsJenkins Html Publisher...

Missing Permission Check in Jenkins Plugin Allows Attackers to Reconfigure Future Build Steps

CVE-2024-2216
JenkinsJenkins Docker-build-s...

CSRF Vulnerability in Jenkins Docker-Build-Step Plugin Allows Attackers to Reconfigure Plugin and Affect Future Build Step Executions

CVE-2024-2215
JenkinsJenkins Docker-build-s...

January 24

CVE-2024-23905
JenkinsJenkins Red Hat Depend...5.4MEDIUM

CVE-2024-23904
JenkinsJenkins Log Command Pl...7.5HIGH

CVE-2024-23903
JenkinsJenkins Gitlab Branch ...5.3MEDIUM

CVE-2024-23902
JenkinsJenkins GitLab Branch ...4.3MEDIUM

CVE-2024-23901
JenkinsJenkins GitLab Branch ...6.5MEDIUM

CVE-2024-23900
JenkinsJenkins Matrix Project...4.3MEDIUM

CVE-2024-23899
JenkinsJenkins Git server Plugin6.5MEDIUM

Jenkins CLI WebSocket Endpoint Vulnerability

CVE-2024-23898
JenkinsJenkins👾8.8HIGH

Arbitrary File Read Vulnerability in Jenkins CLI Command Parser

CVE-2024-23897
JenkinsJenkins🔥😄👾9.8CRITICAL

December 13

CVE-2023-50766
JenkinsJenkins Nexus Platform...8.8HIGH

CVE-2023-50768
JenkinsJenkins Nexus Platform...8.8HIGH

CVE-2023-50767
JenkinsJenkins Nexus Platform...5.4MEDIUM

CVE-2023-50779
JenkinsJenkins PaaSLane Estim...4.3MEDIUM

CVE-2023-50770
JenkinsJenkins OpenId Connect...6.7MEDIUM

CVE-2023-50765
JenkinsJenkins Scriptler Plugin4.3MEDIUM

CVE-2023-50775
JenkinsJenkins Deployment Das...4.3MEDIUM

CVE-2023-50774
JenkinsJenkins HTMLResource P...8.1HIGH

CVE-2023-50769
JenkinsJenkins Nexus Platform...4.3MEDIUM

CVE-2023-50777
JenkinsJenkins PaaSLane Estim...4.3MEDIUM

CVE-2023-50764
JenkinsJenkins Scriptler Plugin8.1HIGH

CVE-2023-50772
JenkinsJenkins Dingding JSON ...4.3MEDIUM

CVE-2023-50773
JenkinsJenkins Dingding JSON ...4.3MEDIUM

CVE-2023-50776
JenkinsJenkins PaaSLane Estim...4.3MEDIUM

CVE-2023-50771
JenkinsJenkins OpenId Connect...6.1MEDIUM

CVE-2023-50778
JenkinsJenkins PaaSLane Estim...8.8HIGH

November 29

CVE-2023-49673
JenkinsJenkins Neuvector Vuln...8.8HIGH

CVE-2023-49674
JenkinsJenkins NeuVector Vuln...4.3MEDIUM

CVE-2023-49652
JenkinsJenkins Google Compute...2.7LOW

CVE-2023-49656
JenkinsJenkins MATLAB Plugin9.8CRITICAL

CVE-2023-49653
JenkinsJenkins Jira Plugin6.5MEDIUM

CVE-2023-49654
JenkinsJenkins MATLAB Plugin9.8CRITICAL

CVE-2023-49655
JenkinsJenkins MATLAB Plugin8.8HIGH

October 25

CVE-2023-46653
JenkinsJenkins Lambdatest-aut...6.5MEDIUM

CVE-2023-46659
JenkinsJenkins Edgewall Trac ...5.4MEDIUM

CVE-2023-46650
JenkinsJenkins GitHub Plugin5.4MEDIUM

CVE-2023-46651
JenkinsJenkins Warnings Plugin6.5MEDIUM

CVE-2023-46658
JenkinsJenkins Msteams Webhoo...5.3MEDIUM

CVE-2023-46654
JenkinsJenkins Cloudbees Cd P...8.1HIGH

CVE-2023-46657
JenkinsJenkins Gogs Plugin5.3MEDIUM

CVE-2023-46652
JenkinsJenkins lambdatest-aut...4.3MEDIUM

CVE-2023-46655
JenkinsJenkins Cloudbees Cd P...6.5MEDIUM

CVE-2023-46656
JenkinsJenkins Multibranch Sc...5.3MEDIUM

CVE-2023-46660
JenkinsJenkins Zanata Plugin5.3MEDIUM

September 20

CVE-2023-43502
JenkinsJenkins Build Failure ...4.3MEDIUM

CVE-2023-43498
JenkinsJenkins8.1HIGH

CVE-2023-43501
JenkinsJenkins Build Failure ...6.5MEDIUM

CVE-2023-43499
JenkinsJenkins Build Failure ...5.4MEDIUM

CVE-2023-43495
JenkinsJenkins5.4MEDIUM

CVE-2023-43496
JenkinsJenkins8.8HIGH

CVE-2023-43494
JenkinsJenkins👾4.3MEDIUM

CVE-2023-43497
JenkinsJenkins8.1HIGH

CVE-2023-43500
JenkinsJenkins Build Failure ...8.8HIGH

September 6

CVE-2023-41943
JenkinsJenkins Aws Codecommit...6.5MEDIUM

CVE-2023-41935
JenkinsJenkins Azure Ad Plugin7.5HIGH

CVE-2023-41936
JenkinsJenkins Google Login P...7.5HIGH

CVE-2023-41937
JenkinsJenkins Bitbucket Push...7.5HIGH

CVE-2023-41945
JenkinsJenkins Assembla Auth ...8.8HIGH

CVE-2023-41938
JenkinsJenkins Ivy Plugin6.5MEDIUM

CVE-2023-41947
JenkinsJenkins Frugal Testing...4.3MEDIUM

CVE-2023-41942
JenkinsJenkins Aws Codecommit...4.3MEDIUM

CVE-2023-41932
JenkinsJenkins Job Configurat...6.5MEDIUM

CVE-2023-41941
JenkinsJenkins Aws Codecommit...4.3MEDIUM

CVE-2023-41930
JenkinsJenkins Job Configurat...4.3MEDIUM

CVE-2023-41933
JenkinsJenkins Job Configurat...8.8HIGH

CVE-2023-41944
JenkinsJenkins Aws Codecommit...6.1MEDIUM