Описание
Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers with read access and HTTP access to Jenkins master to insert data and execute arbitrary code.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| OpenShift Enterprise 1 | jenkins | Affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=859302Jenkins: core allows unprivileged users to insert data into Jenkins master
EPSS
Процентиль: 78%
0.01121
Низкий
6.5 Medium
CVSS2
Связанные уязвимости
CVSS3: 8.8
ubuntu
около 6 лет назад
Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers with read access and HTTP access to Jenkins master to insert data and execute arbitrary code.
CVSS3: 8.8
nvd
около 6 лет назад
Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers with read access and HTTP access to Jenkins master to insert data and execute arbitrary code.
CVSS3: 8.8
debian
около 6 лет назад
Jenkins main before 1.482 and LTS before 1.466.2 allows remote attacke ...
CVSS3: 8.8
github
почти 4 года назад
Jenkins allows Data Insertion and Execution of Code by those with Read and HTTP Access
EPSS
Процентиль: 78%
0.01121
Низкий
6.5 Medium
CVSS2