Количество 6
Количество 6
CVE-2023-43496
Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file before it is installed in Jenkins, potentially resulting in arbitrary code execution.
CVE-2023-43496
Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file before it is installed in Jenkins, potentially resulting in arbitrary code execution.
CVE-2023-43496
Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary ...
GHSA-55wp-3pq4-w8p9
Jenkins temporary plugin file created with insecure permissions
BDU:2023-06018
Уязвимость сервера автоматизации Jenkins, связанная с недостатками разграничения доступа, позволяющая нарушителю получить доступ на чтение, изменение или удаление файлов и выполнить произвольный код
ROS-20240411-08
Множественные уязвимости jenkins
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-43496 Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file before it is installed in Jenkins, potentially resulting in arbitrary code execution. | CVSS3: 7 | 0% Низкий | почти 2 года назад |
 | CVE-2023-43496 Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary file in the system temporary directory with the default permissions for newly created files when installing a plugin from a URL, potentially allowing attackers with access to the system temporary directory to replace the file before it is installed in Jenkins, potentially resulting in arbitrary code execution. | CVSS3: 8.8 | 0% Низкий | почти 2 года назад |
| CVE-2023-43496 Jenkins 2.423 and earlier, LTS 2.414.1 and earlier creates a temporary ... | CVSS3: 8.8 | 0% Низкий | почти 2 года назад |
| GHSA-55wp-3pq4-w8p9 Jenkins temporary plugin file created with insecure permissions | CVSS3: 7 | 0% Низкий | почти 2 года назад |
 | BDU:2023-06018 Уязвимость сервера автоматизации Jenkins, связанная с недостатками разграничения доступа, позволяющая нарушителю получить доступ на чтение, изменение или удаление файлов и выполнить произвольный код | CVSS3: 7 | 0% Низкий | почти 2 года назад |
 | ROS-20240411-08 Множественные уязвимости jenkins | CVSS3: 8.8 | около 1 года назад |
Уязвимостей на страницу