Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

SDLC

Jenkins

Jenkins is a free and open source automation server. It helps automate the parts of software development related to building testing and deploying facilitating continuous integration and continuous delivery. It is a server-based system that runs in servlet containers such as Apache Tomcat.

Official Site:

https://www.jenkins.io/

Severity Summary:

Critical: 19 High: 58 Medium: 168 Low: 11
Reference
Title
Severity
CVE-2020-2160
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2015-5325
Jenkins Improper Access Control Vulnerability
High
CVE-2023-27899
Jenkins Incorrect Authorization Vulnerability
High
CVE-2023-27900
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2021-21695
Jenkins Missing Authorization Vulnerability
High
CVE-2023-27901
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2019-10384
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2018-1000410
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2019-1003003
Jenkins Insufficient Session Expiration Vulnerability
High
CVE-2019-1003004
Jenkins Insufficient Session Expiration Vulnerability
High
CVE-2024-43044
Jenkins Improper Check for Unusual or Exceptional Conditions Vulnerability
High
CVE-2019-1003049
Jenkins Insufficient Session Expiration Vulnerability
High
CVE-2012-4438
Jenkins Improper Input Validation Vulnerability
High
CVE-2019-10353
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2023-35141
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2012-0785
Jenkins Uncontrolled Resource Consumption Vulnerability
High
CVE-2023-44487
Jenkins Vulnerability
High
CVE-2015-5322
Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2013-0327
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2015-1813
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-1812
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-5573
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-0331
Jenkins Improper Input Validation Vulnerability
Medium
CVE-2012-6073
Jenkins Improper Input Validation Vulnerability
Medium
CVE-2013-0330
Jenkins Vulnerability
Medium
CVE-2015-5324
Jenkins Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2021-21640
Jenkins Improper Handling of Inconsistent Structural Elements Vulnerability
Medium
CVE-2012-0325
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-21639
Jenkins Improper Input Validation Vulnerability
Medium
CVE-2014-9635
Jenkins 7PK - Security Features Vulnerability
Medium