Max CVSS | 6.5 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-1003037 | 4.0 |
An information exposure vulnerability exists in Jenkins Azure VM Agents Plugin 0.8.0 and earlier in src/main/java/com/microsoft/azure/vmagent/AzureVMCloud.java that allows attackers with Overall/Read permission to enumerate credentials IDs of credent
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003034 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Job DSL Plugin 1.71 and earlier in job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/AbstractDslScriptLoader.groovy, job-dsl-plugin/build.gradle, job-dsl-plugin/src/main/groovy/javaposse/jobdsl/plugin/
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003036 | 4.0 |
A data modification vulnerability exists in Jenkins Azure VM Agents Plugin 0.8.0 and earlier in src/main/java/com/microsoft/azure/vmagent/AzureVMAgent.java that allows attackers with Overall/Read permission to attach a public IP address to an Azure V
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003032 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Email Extension Plugin 2.64 and earlier in pom.xml, src/main/java/hudson/plugins/emailext/ExtendedEmailPublisher.java, src/main/java/hudson/plugins/emailext/plugins/content/EmailExtScript.java, src/mai
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003038 | 2.1 |
An insufficiently protected credentials vulnerability exists in Jenkins Repository Connector Plugin 1.2.4 and earlier in src/main/java/org/jvnet/hudson/plugins/repositoryconnector/ArtifactDeployer.java, src/main/java/org/jvnet/hudson/plugins/reposito
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003033 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Groovy Plugin 2.1 and earlier in pom.xml, src/main/java/hudson/plugins/groovy/StringScriptSource.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003029 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/Secure
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003035 | 4.0 |
An information exposure vulnerability exists in Jenkins Azure VM Agents Plugin 0.8.0 and earlier in src/main/java/com/microsoft/azure/vmagent/AzureVMAgentTemplate.java, src/main/java/com/microsoft/azure/vmagent/AzureVMCloud.java that allows attackers
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003030 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Pipeline: Groovy Plugin 2.63 and earlier in pom.xml, src/main/java/org/jenkinsci/plugins/workflow/cps/CpsGroovyShell.java that allows attackers able to control pipeline scripts to execute arbitrary cod
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003039 | 4.0 |
An insufficiently protected credentials vulnerability exists in JenkinsAppDynamics Dashboard Plugin 1.0.14 and earlier in src/main/java/nl/codecentric/jenkins/appd/AppDynamicsResultsPublisher.java that allows attackers without permission to obtain pa
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003031 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM.
|
25-10-2023 - 18:16 | 08-03-2019 - 21:29 | |
CVE-2019-1003034 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Job DSL Plugin 1.71 and earlier in job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/AbstractDslScriptLoader.groovy, job-dsl-plugin/build.gradle, job-dsl-plugin/src/main/groovy/javaposse/jobdsl/plugin/
|
30-09-2020 - 12:55 | 08-03-2019 - 21:29 | |
CVE-2019-1003032 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Email Extension Plugin 2.64 and earlier in pom.xml, src/main/java/hudson/plugins/emailext/ExtendedEmailPublisher.java, src/main/java/hudson/plugins/emailext/plugins/content/EmailExtScript.java, src/mai
|
30-09-2020 - 12:55 | 08-03-2019 - 21:29 | |
CVE-2019-1003033 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Groovy Plugin 2.1 and earlier in pom.xml, src/main/java/hudson/plugins/groovy/StringScriptSource.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master
|
30-09-2020 - 12:55 | 08-03-2019 - 21:29 | |
CVE-2019-1003031 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM.
|
30-09-2020 - 12:55 | 08-03-2019 - 21:29 | |
CVE-2019-1003036 | 4.0 |
A data modification vulnerability exists in Jenkins Azure VM Agents Plugin 0.8.0 and earlier in src/main/java/com/microsoft/azure/vmagent/AzureVMAgent.java that allows attackers with Overall/Read permission to attach a public IP address to an Azure V
|
30-09-2020 - 12:48 | 08-03-2019 - 21:29 | |
CVE-2019-1003035 | 4.0 |
An information exposure vulnerability exists in Jenkins Azure VM Agents Plugin 0.8.0 and earlier in src/main/java/com/microsoft/azure/vmagent/AzureVMAgentTemplate.java, src/main/java/com/microsoft/azure/vmagent/AzureVMCloud.java that allows attackers
|
30-09-2020 - 12:48 | 08-03-2019 - 21:29 | |
CVE-2019-1003039 | 4.0 |
An insufficiently protected credentials vulnerability exists in JenkinsAppDynamics Dashboard Plugin 1.0.14 and earlier in src/main/java/nl/codecentric/jenkins/appd/AppDynamicsResultsPublisher.java that allows attackers without permission to obtain pa
|
30-09-2020 - 12:42 | 08-03-2019 - 21:29 | |
CVE-2019-1003037 | 4.0 |
An information exposure vulnerability exists in Jenkins Azure VM Agents Plugin 0.8.0 and earlier in src/main/java/com/microsoft/azure/vmagent/AzureVMCloud.java that allows attackers with Overall/Read permission to enumerate credentials IDs of credent
|
30-09-2020 - 12:42 | 08-03-2019 - 21:29 | |
CVE-2019-1003038 | 2.1 |
An insufficiently protected credentials vulnerability exists in Jenkins Repository Connector Plugin 1.2.4 and earlier in src/main/java/org/jvnet/hudson/plugins/repositoryconnector/ArtifactDeployer.java, src/main/java/org/jvnet/hudson/plugins/reposito
|
30-09-2020 - 12:42 | 08-03-2019 - 21:29 | |
CVE-2019-1003030 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Pipeline: Groovy Plugin 2.63 and earlier in pom.xml, src/main/java/org/jenkinsci/plugins/workflow/cps/CpsGroovyShell.java that allows attackers able to control pipeline scripts to execute arbitrary cod
|
29-09-2020 - 18:25 | 08-03-2019 - 21:29 | |
CVE-2019-1003029 | 6.5 |
A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/Secure
|
29-09-2020 - 00:43 | 08-03-2019 - 21:29 |