Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-1000861 | 10.0 |
A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java that allows attackers to invoke some methods on Java object
|
13-06-2022 - 19:00 | 10-12-2018 - 14:29 | |
CVE-2018-1000864 | 4.0 |
A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.
|
03-10-2019 - 00:03 | 10-12-2018 - 14:29 | |
CVE-2018-1000863 | 6.4 |
A data modification vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in User.java, IdStrategy.java that allows attackers to submit crafted user names that can cause an improper migration of user record storage formats, poten
|
03-10-2019 - 00:03 | 10-12-2018 - 14:29 | |
CVE-2018-1000862 | 4.0 |
An information exposure vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in DirectoryBrowserSupport.java that allows attackers with the ability to control build output to browse the file system on agents running builds beyon
|
08-05-2019 - 22:23 | 10-12-2018 - 14:29 |