site:jenkins.io /url https://www.jenkins.io/security/cna/

AllVideos News Books Images Maps Shopping

Security Advisories - Jenkins

This page lists all security advisories that have been published so far. This index is also available as an RSS feed. 2024. Jenkins Security Advisory 2024-05 ...

Jenkins Security Advisory... · CVE-2024-23897 · Reporting Vulnerabilities

Jenkins Security

www.jenkins.io › security

The Jenkins project is a CVE Numbers Authority (CNA) for Jenkins and Jenkins plugins published by the Jenkins project. About the Jenkins Security Team. The ...

Security Advisories · Jenkins CNA · About the Jenkins Security Team

Missing: /url | Show results with:/url

Jenkins Security Advisory 2024-01-24

www.jenkins.io › security › advisory

Jan 24, 2024 · This advisory announces vulnerabilities in the following Jenkins deliverables: Jenkins (core); Git server Plugin · GitLab Branch Source ...

Jenkins Security Advisory 2024-05-02

www.jenkins.io › security › advisory

May 2, 2024 · Description: Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are ...

Jenkins Security Advisory 2023-10-25

www.jenkins.io › security › advisory

Oct 25, 2023 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. GitHub Plugin 1.37.

Jenkins Security Advisory 2024-03-06

www.jenkins.io › security › advisory

Mar 6, 2024 · This advisory announces vulnerabilities in the following Jenkins deliverables: AppSpider Plugin · Bitbucket Branch Source Plugin ...

Jenkins Security Advisory 2023-09-06

www.jenkins.io › security › advisory

Sep 6, 2023 · This advisory announces vulnerabilities in the following Jenkins deliverables: Assembla Auth Plugin · AWS CodeCommit Trigger Plugin ...

Jenkins Security :: Jenkins Docs

docs.jenkins.io › security

The Jenkins project takes security seriously. We make every possible effort to ensure users can adequately secure their automation infrastructure.

Jenkins Security Advisory 2023-07-12

www.jenkins.io › security › advisory

Jul 12, 2023 · This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained ...

Jenkins Security Advisory 2023-07-26

www.jenkins.io › security › advisory

Jul 26, 2023 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control build log contents. Jenkins 2.416, ...