Jenkins - Release CVE

Filtered by vendor Jenkins Subscribe

Filtered by product Release

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-2292	1 Jenkins	1 Release	2023-12-10	3.5 LOW	5.4 MEDIUM
Jenkins Release Plugin 2.10.2 and earlier does not escape the release version in badge tooltip, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Release/Release permission.
CVE-2018-1000013	1 Jenkins	1 Release	2023-12-10	6.8 MEDIUM	8.8 HIGH
Jenkins Release Plugin 2.9 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to trigger release builds.

Vulnerabilities (CVE)