| Max CVSS | 6.5 | Min CVSS | 5.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-2608 | 6.5 |
Jenkins before versions 2.44, 2.32.2 is vulnerable to a remote code execution vulnerability involving the deserialization of various types in javax.imageio in XStream-based APIs (SECURITY-383).
|
09-10-2019 - 23:26 | 15-05-2018 - 20:29 | |
| CVE-2017-2612 | 5.5 |
In Jenkins before versions 2.44, 2.32.2 low privilege users were able to override JDK download credentials (SECURITY-392), resulting in future builds possibly failing to download a JDK.
|
09-10-2019 - 23:26 | 15-05-2018 - 20:29 |