| Max CVSS | 6.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-10337 | 5.0 |
An XML external entities (XXE) vulnerability in Jenkins Token Macro Plugin 2.7 and earlier allowed attackers able to control a the content of the input file for the "XML" macro to have Jenkins resolve external entities, resulting in the extraction of
|
25-10-2023 - 18:16 | 11-06-2019 - 14:29 | |
| CVE-2019-10320 | 4.0 |
Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containin
|
25-10-2023 - 18:16 | 21-05-2019 - 13:29 | |
| CVE-2019-10328 | 6.5 |
Jenkins Pipeline Remote Loader Plugin 1.4 and earlier provided a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection.
|
25-10-2023 - 18:16 | 31-05-2019 - 15:29 |