CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Jenkins : Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-43578 693 2021-11-12 2021-11-17
5.5
None Remote Low ??? None Partial Partial
Jenkins Squash TM Publisher (Squash4Jenkins) Plugin 1.0.0 and earlier implements an agent-to-controller message that does not implement any validation of its input, allowing attackers able to control agent processes to replace arbitrary files on the Jenkins controller file system with an attacker-controlled JSON string.
2 CVE-2021-43577 611 2021-11-12 2021-11-17
5.5
None Remote Low ??? Partial Partial None
Jenkins OWASP Dependency-Check Plugin 5.1.1 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
3 CVE-2021-43576 611 2021-11-12 2021-11-17
4.3
None Remote Medium Not required Partial None None
Jenkins pom2config Plugin 1.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks, allowing attackers with Overall/Read and Item/Read permissions to have Jenkins parse a crafted XML file that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery.
4 CVE-2021-21701 611 2021-11-12 2021-11-17
4.0
None Remote Low ??? Partial None None
Jenkins Performance Plugin 3.20 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
5 CVE-2021-21700 79 XSS 2021-11-12 2021-11-17
3.5
None Remote Medium ??? None Partial None
Jenkins Scriptler Plugin 3.3 and earlier does not escape the name of scripts on the UI when asking to confirm their deletion, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by exploitable by attackers able to create Scriptler scripts.
6 CVE-2021-21699 79 XSS 2021-11-12 2021-11-17
3.5
None Remote Medium ??? None Partial None
Jenkins Active Choices Plugin 2.5.6 and earlier does not escape the parameter name of reactive parameters and dynamic reference parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.
7 CVE-2021-21698 22 Dir. Trav. 2021-11-04 2021-11-08
5.0
None Remote Low Not required Partial None None
Jenkins Subversion Plugin 2.15.0 and earlier does not restrict the name of a file when looking up a subversion key file on the controller from an agent.
8 CVE-2021-21697 184 2021-11-04 2021-11-08
6.4
None Remote Low Not required Partial Partial None
Jenkins 2.318 and earlier, LTS 2.303.2 and earlier allows any agent to read and write the contents of any build directory stored in Jenkins with very few restrictions.
9 CVE-2021-21696 693 Exec Code 2021-11-04 2021-11-08
7.5
None Remote Low Not required Partial Partial Partial
Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not limit agent read/write access to the libs/ directory inside build directories when using the FilePath APIs, allowing attackers in control of agent processes to replace the code of a trusted library with a modified variant. This results in unsandboxed code execution in the Jenkins controller process.
10 CVE-2021-21695 862 2021-11-04 2021-11-09
6.8
None Remote Medium Not required Partial Partial Partial
FilePath#listFiles lists files outside directories that agents are allowed to access when following symbolic links in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
11 CVE-2021-21694 862 2021-11-04 2021-11-09
7.5
None Remote Low Not required Partial Partial Partial
FilePath#toURI, FilePath#hasSymlink, FilePath#absolutize, FilePath#isDescendant, and FilePath#get*DiskSpace do not check any permissions in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
12 CVE-2021-21693 285 2021-11-04 2021-11-09
7.5
None Remote Low Not required Partial Partial Partial
When creating temporary files, agent-to-controller access to create those files is only checked after they've been created in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
13 CVE-2021-21692 863 2021-11-04 2021-11-09
7.5
None Remote Low Not required Partial Partial Partial
FilePath#renameTo and FilePath#moveAllChildrenTo in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier only check 'read' agent-to-controller access permission on the source path, instead of 'delete'.
14 CVE-2021-21691 863 2021-11-04 2021-11-09
7.5
None Remote Low Not required Partial Partial Partial
Creating symbolic links is possible without the 'symlink' agent-to-controller access control permission in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
15 CVE-2021-21690 693 Bypass 2021-11-04 2021-11-09
7.5
None Remote Low Not required Partial Partial Partial
Agent processes are able to completely bypass file path filtering by wrapping the file operation in an agent file path in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
16 CVE-2021-21689 862 2021-11-04 2021-11-08
6.4
None Remote Low Not required Partial Partial None
FilePath#unzip and FilePath#untar were not subject to any agent-to-controller access control in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
17 CVE-2021-21688 862 2021-11-04 2021-11-05
5.0
None Remote Low Not required Partial None None
The agent-to-controller security check FilePath#reading(FileVisitor) in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not reject any operations, allowing users to have unrestricted read access using certain operations (creating archives, FilePath#copyRecursiveTo).
18 CVE-2021-21687 862 2021-11-04 2021-11-08
6.4
None Remote Low Not required Partial Partial None
Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not check agent-to-controller access to create symbolic links when unarchiving a symbolic link in FilePath#untar.
19 CVE-2021-21686 59 2021-11-04 2021-11-08
5.8
None Remote Medium Not required Partial Partial None
File path filters in the agent-to-controller security subsystem of Jenkins 2.318 and earlier, LTS 2.303.2 and earlier do not canonicalize paths, allowing operations to follow symbolic links to outside allowed directories.
20 CVE-2021-21685 862 2021-11-04 2021-11-08
6.4
None Remote Low Not required Partial Partial None
Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not check agent-to-controller access to create parent directories in FilePath#mkdirs.
21 CVE-2021-21684 79 XSS 2021-10-06 2021-10-15
4.3
None Remote Medium Not required None Partial None
Jenkins Git Plugin 4.8.2 and earlier does not escape the Git SHA-1 checksum parameters provided to commit notifications when displaying them in a build cause, resulting in a stored cross-site scripting (XSS) vulnerability.
22 CVE-2021-21681 256 2021-08-31 2021-09-08
2.1
None Local Low Not required Partial None None
Jenkins Nomad Plugin 0.7.4 and earlier stores Docker passwords unencrypted in the global config.xml file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.
23 CVE-2021-21680 611 2021-08-31 2021-09-07
5.5
None Remote Low ??? Partial Partial None
Jenkins Nested View Plugin 1.20 and earlier does not configure its XML transformer to prevent XML external entity (XXE) attacks.
24 CVE-2021-21679 693 Bypass CSRF 2021-08-31 2021-09-08
6.8
None Remote Medium Not required Partial Partial Partial
Jenkins Azure AD Plugin 179.vf6841393099e and earlier allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins.
25 CVE-2021-21678 693 Bypass CSRF 2021-08-31 2021-09-08
6.8
None Remote Medium Not required Partial Partial Partial
Jenkins SAML Plugin 2.0.7 and earlier allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins.
26 CVE-2021-21677 502 Exec Code 2021-08-31 2021-09-08
6.5
None Remote Low ??? Partial Partial Partial
Jenkins Code Coverage API Plugin 1.4.0 and earlier does not apply Jenkins JEP-200 deserialization protection to Java objects it deserializes from disk, resulting in a remote code execution vulnerability.
27 CVE-2021-21676 862 2021-06-30 2021-07-07
4.0
None Remote Low ??? None Partial None
Jenkins requests-plugin Plugin 2.2.7 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to send test emails to an attacker-specified email address.
28 CVE-2021-21675 352 CSRF 2021-06-30 2021-07-06
4.3
None Remote Medium Not required None Partial None
A cross-site request forgery (CSRF) vulnerability in Jenkins requests-plugin Plugin 2.2.12 and earlier allows attackers to create requests and/or have administrators apply pending requests.
29 CVE-2021-21674 862 2021-06-30 2021-07-07
4.0
None Remote Low ??? Partial None None
A missing permission check in Jenkins requests-plugin Plugin 2.2.6 and earlier allows attackers with Overall/Read permission to view the list of pending requests.
30 CVE-2021-21673 601 2021-06-30 2021-07-06
5.8
None Remote Medium Not required Partial Partial None
Jenkins CAS Plugin 1.6.0 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins, allowing attackers to perform phishing attacks.
31 CVE-2021-21672 611 2021-06-30 2021-07-06
4.0
None Remote Low ??? Partial None None
Jenkins Selenium HTML report Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
32 CVE-2021-21671 384 2021-06-30 2021-07-06
5.1
None Remote High Not required Partial Partial Partial
Jenkins 2.299 and earlier, LTS 2.289.1 and earlier does not invalidate the previous session on login.
33 CVE-2021-21670 863 2021-06-30 2021-07-06
4.0
None Remote Low ??? None Partial None
Jenkins 2.299 and earlier, LTS 2.289.1 and earlier allows users to cancel queue items and abort builds of jobs for which they have Item/Cancel permission even when they do not have Item/Read permission.
34 CVE-2021-21669 611 2021-06-18 2021-06-22
7.5
None Remote Low Not required Partial Partial Partial
Jenkins Generic Webhook Trigger Plugin 1.72 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
35 CVE-2021-21668 79 XSS 2021-06-16 2021-06-22
3.5
None Remote Medium ??? None Partial None
Jenkins Scriptler Plugin 3.1 and earlier does not escape script content, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Scriptler/Configure permission.
36 CVE-2021-21667 79 XSS 2021-06-16 2021-06-22
3.5
None Remote Medium ??? None Partial None
Jenkins Scriptler Plugin 3.2 and earlier does not escape parameter names shown in job configuration forms, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Scriptler/Configure permission.
37 CVE-2021-21666 79 XSS 2021-06-10 2021-06-15
4.3
None Remote Medium Not required None Partial None
Jenkins Kiuwan Plugin 1.6.0 and earlier does not escape query parameters in an error message for a form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
38 CVE-2021-21665 352 CSRF 2021-06-10 2021-06-15
6.0
None Remote Medium ??? Partial Partial Partial
A cross-site request forgery (CSRF) vulnerability in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkins.
39 CVE-2021-21664 863 2021-06-10 2021-06-15
4.0
None Remote Low ??? Partial None None
An incorrect permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Generic Create permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkins.
40 CVE-2021-21663 862 2021-06-10 2021-06-15
4.0
None Remote Low ??? Partial None None
A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 7.5.8 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkins.
41 CVE-2021-21662 862 2021-06-10 2021-06-15
4.0
None Remote Low ??? Partial None None
A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Overall/Read permission to enumerate credentials ID of credentials stored in Jenkins.
42 CVE-2021-21661 862 2021-06-10 2021-06-15
4.0
None Remote Low ??? Partial None None
Jenkins Kubernetes CLI Plugin 1.10.0 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
43 CVE-2021-21660 79 XSS 2021-05-25 2021-06-01
3.5
None Remote Medium ??? None Partial None
Jenkins Markdown Formatter Plugin 0.1.0 and earlier does not sanitize crafted link target URLs, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with the ability to edit any description rendered using the configured markup formatter.
44 CVE-2021-21659 611 2021-05-25 2021-05-28
5.5
None Remote Low ??? Partial None Partial
Jenkins URLTrigger Plugin 0.48 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
45 CVE-2021-21658 611 2021-05-25 2021-06-01
6.4
None Remote Low Not required Partial Partial None
Jenkins Nuget Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
46 CVE-2021-21657 611 2021-05-25 2021-06-01
6.5
None Remote Low ??? Partial Partial Partial
Jenkins Filesystem Trigger Plugin 0.40 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
47 CVE-2021-21656 611 2021-05-11 2021-05-19
5.5
None Remote Low ??? Partial Partial None
Jenkins Xcode integration Plugin 2.0.14 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
48 CVE-2021-21655 352 CSRF 2021-05-11 2021-05-20
5.8
None Remote Medium Not required Partial Partial None
A cross-site request forgery (CSRF) vulnerability in Jenkins P4 Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified Perforce server using attacker-specified username and password.
49 CVE-2021-21654 862 2021-05-11 2021-05-19
4.0
None Remote Low ??? None Partial None
Jenkins P4 Plugin 1.11.4 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified Perforce server using attacker-specified username and password.
50 CVE-2021-21653 862 2021-05-11 2021-05-19
4.0
None Remote Low ??? Partial None None
Jenkins Xray - Test Management for Jira Plugin 2.4.0 and earlier does not perform a permission check in an HTTP endpoint, allowing with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
Total number of vulnerabilities : 941   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.