exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2017-1000398

около 8 лет назад

The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /computer/(agent-name)/api showed information about tasks (typically builds) currently running on that agent. This included information about tasks that the current user otherwise has no access to, e.g. due to lack of Item/Read permission. This has been fixed, and the API now only shows information about accessible tasks.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-1000398

больше 8 лет назад

The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /computer/(agent-name)/api showed information about tasks (typically builds) currently running on that agent. This included information about tasks that the current user otherwise has no access to, e.g. due to lack of Item/Read permission. This has been fixed, and the API now only shows information about accessible tasks.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-1000398

около 8 лет назад

The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /computer/(agent-name)/api showed information about tasks (typically builds) currently running on that agent. This included information about tasks that the current user otherwise has no access to, e.g. due to lack of Item/Read permission. This has been fixed, and the API now only shows information about accessible tasks.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-1000398

около 8 лет назад

The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /com ...

CVSS3: 4.3

EPSS: Низкий

GHSA-h972-cwjv-2v39

больше 3 лет назад

Exposure of Sensitive Information to an Unauthorized Actor in Jenkins

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2017-1000398 The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /computer/(agent-name)/api showed information about tasks (typically builds) currently running on that agent. This included information about tasks that the current user otherwise has no access to, e.g. due to lack of Item/Read permission. This has been fixed, and the API now only shows information about accessible tasks.	CVSS3: 4.3	0% Низкий	около 8 лет назад
CVE-2017-1000398 The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /computer/(agent-name)/api showed information about tasks (typically builds) currently running on that agent. This included information about tasks that the current user otherwise has no access to, e.g. due to lack of Item/Read permission. This has been fixed, and the API now only shows information about accessible tasks.	CVSS3: 4.3	0% Низкий	больше 8 лет назад
CVE-2017-1000398 The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /computer/(agent-name)/api showed information about tasks (typically builds) currently running on that agent. This included information about tasks that the current user otherwise has no access to, e.g. due to lack of Item/Read permission. This has been fixed, and the API now only shows information about accessible tasks.	CVSS3: 4.3	0% Низкий	около 8 лет назад
CVE-2017-1000398 The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /com ...	CVSS3: 4.3	0% Низкий	около 8 лет назад
GHSA-h972-cwjv-2v39 Exposure of Sensitive Information to an Unauthorized Actor in Jenkins	CVSS3: 4.3	0% Низкий	больше 3 лет назад

Уязвимостей на страницу