Download
| Alert*
oval:org.secpod.oval:def:55564
The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle an issue in the remoting module. Successful exploitation could allow attackers ... oval:org.secpod.oval:def:55565 The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to a CLRF injection vulnerability. A flaw is present in the application, which fails to properly handle an issue in CLI command documentation. Successful exploitation could allow attackers to i ... oval:org.secpod.oval:def:55566 The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to a brute force attack vulnerability. A flaw is present in the application, which fails to properly handle the usage of algorithm to verify API tokens. Successful exploitation could allow atta ... oval:org.secpod.oval:def:55567 The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to a brute force attack vulnerability. A flaw is present in the application, which fails to properly handle the usage of algorithm to verify CSRF tokens. Successful exploitation could allow att ... oval:org.secpod.oval:def:55568 The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle multiple uspecified API endpoints. Successful exploitation could allow remote ... oval:org.secpod.oval:def:55593 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in AES ECB block cipher mode. Successful exploitation could allow attacke ... oval:org.secpod.oval:def:55594 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to create new items ... oval:org.secpod.oval:def:55595 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle an issue in remote API. Successful exploitation could allow attackers to view node mo ... oval:org.secpod.oval:def:55596 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in parameter names and descriptions. Successful exploitation could allow att ... oval:org.secpod.oval:def:55597 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege vulnerability. A flaw is present in the application, which fails to properly handle an issue in blacklisting of pipeline metadata files.Successful exploitation could allow attacker ... oval:org.secpod.oval:def:55598 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in config.xml API. Successful exploitation could allow attackers to obtai ... oval:org.secpod.oval:def:55599 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to cause unauthorize ... oval:org.secpod.oval:def:55600 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in the internal API. Successful exploitation could allow attackers to obt ... oval:org.secpod.oval:def:55601 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in console notes. Successful exploitation could allow attackers to cause una ... oval:org.secpod.oval:def:55602 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to properly handle in XSTREAM APIs. Successful exploitation could allow attackers to cause disruption o ... oval:org.secpod.oval:def:55603 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in search suggestions. Successful exploitation could allow attackers to o ... oval:org.secpod.oval:def:55604 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in search suggestions. Successful exploitation could allow attackers to caus ... oval:org.secpod.oval:def:55605 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to trigger backgroun ... oval:org.secpod.oval:def:55606 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle permission checks. Successful exploitation could allow attackers to cause disruption ... oval:org.secpod.oval:def:55607 The host is installed with Jenkins LTS before 2.32.2 or Jenkins rolling release before 2.44 and is prone to a CSRF vulnerability. A flaw is present in the application, which fails to properly handle an issue in GET requests. Successful exploitation could allow attackers to cause unauthorized modific ... oval:org.secpod.oval:def:55637 The host is installed with Jenkins LTS before 2.89.4 or Jenkins rolling release before 2.107 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle an issue in input validation. Successful exploitation could allow attackers with Ove ... |