Max CVSS 6.8 Min CVSS 4.0 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2020-2181 4.0
Jenkins Credentials Binding Plugin 1.22 and earlier does not mask (i.e., replace with asterisks) secrets in the build log when the build contains no build steps.
11-05-2020 - 20:44 06-05-2020 - 13:15
CVE-2020-2182 4.0
Jenkins Credentials Binding Plugin 1.22 and earlier does not mask (i.e., replace with asterisks) secrets containing a `$` character in some circumstances.
11-05-2020 - 20:36 06-05-2020 - 13:15
CVE-2020-2188 4.0
A missing permission check in Jenkins Amazon EC2 Plugin 1.50.1 and earlier in form-related methods allowed users with Overall/Read access to enumerate credentials ID of credentials stored in Jenkins.
11-05-2020 - 20:19 06-05-2020 - 13:15
CVE-2020-2183 4.0
Jenkins Copy Artifact Plugin 1.43.1 and earlier performs improper permission checks, allowing attackers to copy artifacts from jobs they have no permission to access.
11-05-2020 - 20:17 06-05-2020 - 13:15
CVE-2020-2187 6.8
Jenkins Amazon EC2 Plugin 1.50.1 and earlier unconditionally accepts self-signed certificates and does not perform hostname validation, enabling man-in-the-middle attacks.
11-05-2020 - 16:40 06-05-2020 - 13:15
CVE-2020-2185 6.8
Jenkins Amazon EC2 Plugin 1.50.1 and earlier does not validate SSH host keys when connecting agents, enabling man-in-the-middle attacks.
11-05-2020 - 15:03 06-05-2020 - 13:15
CVE-2020-2184 4.3
A cross-site request forgery vulnerability in Jenkins CVS Plugin 2.15 and earlier allows attackers to create and manipulate tags, and to connect to an attacker-specified URL.
11-05-2020 - 15:03 06-05-2020 - 13:15
CVE-2020-2186 4.3
A cross-site request forgery vulnerability in Jenkins Amazon EC2 Plugin 1.50.1 and earlier allows attackers to provision instances.
08-05-2020 - 21:03 06-05-2020 - 13:15
CVE-2020-2189 6.5
Jenkins SCM Filter Jervis Plugin 0.2.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
07-05-2020 - 20:46 06-05-2020 - 13:15
Back to Top Mark selected
Back to Top