Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

SDLC

Jenkins

Jenkins is a free and open source automation server. It helps automate the parts of software development related to building testing and deploying facilitating continuous integration and continuous delivery. It is a server-based system that runs in servlet containers such as Apache Tomcat.

Official Site:

https://www.jenkins.io/

Severity Summary:

Critical: 19 High: 54 Medium: 155 Low: 10
Reference
Title
Severity
CVE-2017-1000394
Jenkins Improper Input Validation Vulnerability
High
CVE-2017-1000354
Jenkins Improper Authentication Vulnerability
High
CVE-2017-1000356
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2017-2608
Jenkins Deserialization of Untrusted Data Vulnerability
High
CVE-2018-1000194
Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2015-7539
Jenkins Insufficient Verification of Data Authenticity Vulnerability
High
CVE-2024-23898
Jenkins Origin Validation Error Vulnerability
High
CVE-2015-7537
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2023-43497
Jenkins Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2023-27899
Jenkins Incorrect Authorization Vulnerability
High
CVE-2023-27900
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2023-27901
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2023-44487
Jenkins Vulnerability
High
CVE-2023-35141
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2024-43044
Jenkins Improper Check for Unusual or Exceptional Conditions Vulnerability
High
CVE-2023-36478
Jenkins Integer Overflow or Wraparound Vulnerability
High
CVE-2021-21688
Jenkins Missing Authorization Vulnerability
High
CVE-2023-43498
Jenkins Vulnerability
High
CVE-2023-43496
Jenkins Incorrect Default Permissions Vulnerability
High
CVE-2015-1814
Jenkins Permissions Privileges and Access Controls Vulnerability
High
CVE-2021-21605
Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2022-34174
Jenkins Observable Discrepancy Vulnerability
High
CVE-2022-34175
Jenkins Incorrect Authorization Vulnerability
High
CVE-2021-28165
Jenkins Uncontrolled Resource Consumption Vulnerability
High
CVE-2022-0538
Jenkins Deserialization of Untrusted Data Vulnerability
High
CVE-2021-21686
Jenkins Improper Link Resolution Before File Access (Link Following) Vulnerability
High
CVE-2018-1999002
Jenkins Improper Input Validation Vulnerability
High
CVE-2021-21695
Jenkins Missing Authorization Vulnerability
High
CVE-2021-21671
Jenkins Session Fixation Vulnerability
High
CVE-2014-3666
Jenkins Improper Control of Generation of Code (Code Injection) Vulnerability
High