Lucene search
GoogleOSV:GHSA-Q4CQ-R7HG-PXQQHistoryMay 14, 2022 - 1:04 a.m.
Improper Authentication in Jenkins
2022-05-1401:04:56
Google
osv.dev
5
0.001 Low
EPSS
Percentile
22.0%
A improper authentication vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in SecurityRealm.java, TokenBasedRememberMeServices2.java that allows attackers with a valid cookie to remain logged in even if that feature is disabled.
Related
nvd
nvd
CVE-2018-1999045
2018-08-23 18:29:00
github
github
Improper Authentication in Jenkins
2022-05-14 01:04:56
cve
cve
CVE-2018-1999045
2022-10-03 16:22:22
prion
prion
Authentication flaw
2018-08-23 18:29:00
osv
osv
CVE-2018-1999045
2018-08-23 18:29:00
redhatcve
redhatcve
CVE-2018-1999045
2018-08-23 04:51:39
ubuntucve
ubuntucve
CVE-2018-1999045
2018-08-23 00:00:00
cvelist
cvelist
CVE-2018-1999045
2022-10-03 16:22:22
openvas
openvas
Jenkins < 2.138 and < 2.121.3 LTS Multiple Vulnerabilities - Windows
2018-08-27 00:00:00
Jenkins < 2.138 and < 2.121.3 LTS Multiple Vulnerabilities - Linux
2018-08-27 00:00:00
nessus
nessus
Jenkins < 2.121.3 / 2.138 Multiple Vulnerabilities
2018-09-06 00:00:00