Lucene search
GoogleOSV:GHSA-8X8P-MFWV-9FJWHistoryMay 17, 2022 - 3:53 a.m.
Jenkins Exposure of Sensitive Information to an Unauthorized Actor vulnerability
2022-05-1703:53:31
Google
osv.dev
9
0.001 Low
EPSS
Percentile
46.3%
Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Job/READ permission to obtain the default value for the password field of a parameterized job by reading the DOM.
Related
prion
prion
Default credentials
2014-10-16 19:55:00
github
github
ubuntucve
ubuntucve
CVE-2014-3680
2014-10-16 00:00:00
cve
cve
CVE-2014-3680
2014-10-16 19:55:08
cvelist
cvelist
CVE-2014-3680
2014-10-16 19:00:00
nvd
nvd
CVE-2014-3680
2014-10-16 19:55:08
openvas
openvas
Jenkins Multiple Vulnerabilities (Oct 2014) - Linux
2016-08-05 00:00:00
Jenkins Multiple Vulnerabilities (Oct 2014) - Windows
2015-12-21 00:00:00
nessus
nessus
FreeBSD : jenkins -- remote execution, privilege escalation, XSS, password exposure, ACL hole, DoS (549a2771-49cc-11e4-ae2c-c80aa9043978)
2014-10-02 00:00:00
Jenkins < 1.583 / 1.565.3 and Jenkins Enterprise 1.532.x / 1.554.x / 1.565.x < 1.532.10.1 / 1.554.10.1 / 1.565.3.1 Multiple Vulnerabilities
2014-11-04 00:00:00
RHEL 7 : openshift (RHSA-2016:0070)
2018-12-06 00:00:00
freebsd
freebsd
archlinux
archlinux
jenkins: multiple issues
2014-10-02 00:00:00
veracode
veracode
Man-In-The-Middle (MitM)
2019-05-02 05:21:35
Path Traversal
2019-05-02 05:21:26
Information Disclosure
2019-05-02 05:21:03
redhat
redhat