Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

SDLC

Jenkins

Jenkins is a free and open source automation server. It helps automate the parts of software development related to building testing and deploying facilitating continuous integration and continuous delivery. It is a server-based system that runs in servlet containers such as Apache Tomcat.

Official Site:

https://www.jenkins.io/

Severity Summary:

Critical: 19 High: 54 Medium: 155 Low: 10
Reference
Title
Severity
CVE-2023-27904
Jenkins Vulnerability
Medium
CVE-2020-2221
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-2222
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-2223
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-2229
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-27902
Jenkins Vulnerability
Medium
CVE-2021-43859
Jenkins Uncontrolled Resource Consumption Vulnerability
Medium
CVE-2022-41224
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-43045
Jenkins Missing Authorization Vulnerability
Medium
CVE-2021-21609
Jenkins Incorrect Authorization Vulnerability
Medium
CVE-2014-3663
Jenkins Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2020-2105
Jenkins Improper Restriction of Rendered UI Layers or Frames Vulnerability
Medium
CVE-2021-21640
Jenkins Improper Handling of Inconsistent Structural Elements Vulnerability
Medium
CVE-2013-0328
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2014-3664
Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2019-10405
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-2048
Jenkins Other Vulnerability
Medium
CVE-2023-39151
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-43495
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-2104
Jenkins Incorrect Authorization Vulnerability
Medium
CVE-2023-43494
Jenkins Vulnerability
Medium
CVE-2021-21608
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-2161
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-2162
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-21602
Jenkins Improper Link Resolution Before File Access (Link Following) Vulnerability
Medium
CVE-2021-21603
Jenkins Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-21606
Jenkins Improper Input Validation Vulnerability
Medium
CVE-2021-21682
Jenkins Vulnerability
Medium
CVE-2021-21683
Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2021-21607
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability
Medium