Lucene search

K

Veracode Vulnerability DatabaseVERACODE:16657

HistoryMay 02, 2019 - 5:21 a.m.

Cross-Site Request Forgery (CSRF)

2019-05-0205:21:33

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

13

0.002 Low

EPSS

Percentile

55.5%

Jenkins is vulnerable to Cross-site request forgery (CSRF) vulnerability. The attack is possible because the request via the HTTP GET method are not validated, allowing remote attackers to hijack the authentication of administrators for requests.

CPENameOperatorVersion
nodejs-registry-urleq2.0.0__3.el7
nodejs-kind-ofeq2.0.1__1.el7aos
nodejs-slideeq1.1.5__1.el7
nodejs-pinkie-promiseeq1.0.0__1.el7
nodejs-readdirpeq0.4.0__1.el7
nodejs-is-streameq1.0.1__1.el7
origin-kibanaeq0.4__3.el7aos
nodejs-graceful-fseq2.0.0__2.el7
nodejs-normalize-patheq0.3.0__1.el7
nodejs-align-texteq0.1.3__1.el7aos

Rows per page:

1-10 of 3811

References

rhn.redhat.com/errata/RHSA-2016-0489.html

access.redhat.com/errata/RHSA-2016:0070

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=1243514

bugzilla.redhat.com/show_bug.cgi?id=1247523

bugzilla.redhat.com/show_bug.cgi?id=1254880

bugzilla.redhat.com/show_bug.cgi?id=1256869

bugzilla.redhat.com/show_bug.cgi?id=1268478

bugzilla.redhat.com/show_bug.cgi?id=1273739

bugzilla.redhat.com/show_bug.cgi?id=1277329

bugzilla.redhat.com/show_bug.cgi?id=1277383

bugzilla.redhat.com/show_bug.cgi?id=1277608

bugzilla.redhat.com/show_bug.cgi?id=1278232

bugzilla.redhat.com/show_bug.cgi?id=1278630

bugzilla.redhat.com/show_bug.cgi?id=1279404

bugzilla.redhat.com/show_bug.cgi?id=1279744

bugzilla.redhat.com/show_bug.cgi?id=1279925

bugzilla.redhat.com/show_bug.cgi?id=1280216

bugzilla.redhat.com/show_bug.cgi?id=1280497

bugzilla.redhat.com/show_bug.cgi?id=1282426

bugzilla.redhat.com/show_bug.cgi?id=1282738

bugzilla.redhat.com/show_bug.cgi?id=1283952

bugzilla.redhat.com/show_bug.cgi?id=1284506

bugzilla.redhat.com/show_bug.cgi?id=1287414

bugzilla.redhat.com/show_bug.cgi?id=1287943

bugzilla.redhat.com/show_bug.cgi?id=1288014

bugzilla.redhat.com/show_bug.cgi?id=1289603

bugzilla.redhat.com/show_bug.cgi?id=1289965

bugzilla.redhat.com/show_bug.cgi?id=1290643

bugzilla.redhat.com/show_bug.cgi?id=1290967

bugzilla.redhat.com/show_bug.cgi?id=1292621

bugzilla.redhat.com/show_bug.cgi?id=1293251

bugzilla.redhat.com/show_bug.cgi?id=1293252

bugzilla.redhat.com/show_bug.cgi?id=1293829

bugzilla.redhat.com/show_bug.cgi?id=1293877

bugzilla.redhat.com/show_bug.cgi?id=1294115

bugzilla.redhat.com/show_bug.cgi?id=1294798

bugzilla.redhat.com/show_bug.cgi?id=1296457

rhn.redhat.com/errata/RHSA-2016-0070.html

wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-12-09

0.002 Low

EPSS

Percentile

55.5%

Related for VERACODE:16657

nvd1 cvelist1 prion1 ubuntucve1 cve1 nessus5 fedora2 freebsd1 openvas2 redhat3 veracode11