VYPR

Jenkins Xp Dev Plugin

by Jenkins Project

CVEs (22)

  • CVE-2023-2196MedMay 16, 2023
    risk 0.21cvss 4.3epss 0.01

    A missing permission check in Jenkins Code Dx Plugin 3.1.0 and earlier allows attackers with Item/Read permission to check for the existence of an attacker-specified file path on an agent file system.

  • CVE-2024-28162MedMar 6, 2024
    risk 0.20cvss 4.2epss 0.00

    In Jenkins Delphix Plugin 3.0.1 through 3.1.0 (both inclusive) a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT) connections fails to take effect until Jenkins is restarted when switching from disabled validation…

Page 2 of 2