Improper Authentication in Jenkins and LTS
| Дата публикации: | 30.01.2020 |
| Всего просмотров: | 428 |
| Опасность: | Высокая |
| Наличие исправления: | Да |
| Количество уязвимостей: | 1 |
| CVSSv3.1 рейтинг: | 8.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L/E:U/RL:O/RC:C] |
| CVE ID: | CVE-2020-2099 |
| Вектор эксплуатации: | Удаленная |
| Воздействие: | Обход ограничений безопасности |
| CWE ID: | Нет данных |
| Наличие эксплоита: | Нет данных |
| Уязвимые продукты: |
Jenkins CI
Jenkins 1.x Jenkins LTS |
| Уязвимые версии: | Jenkins версии 2.0, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.7.1, 2.7.2, 2.7.3, 2.7.4, 2.8, 2.9, 2.11, 2.12, 2.13, 2.14, 2.15, 2.16, 2.17, 2.18, 2.19, 2.19.1, 2.19.2, 2.19.3, 2.19.4, 2.21, 2.22, 2.23, 2.24, 2.25, 2.26, 2.27, 2.28, 2.29, 2.31, 2.32, 2.32.1, 2.32.2, 2.32.3, 2.33, 2.34, 2.35, 2.36, 2.37, 2.38, 2.39, 2.41, 2.42, 2.43, 2.44, 2.45, 2.46, 2.46.1, 2.46.2, 2.46.3, 2.47, 2.48, 2.49, 2.51, 2.52, 2.53, 2.54, 2.55, 2.56, 2.57, 2.58, 2.59, 2.60.1, 2.60.2, 2.60.3, 2.61, 2.62, 2.63, 2.64, 2.65, 2.66, 2.67, 2.68, 2.69, 2.71, 2.72, 2.73, 2.73.1, 2.73.2, 2.73.3, 2.74, 2.75, 2.76, 2.77, 2.78, 2.79, 2.81, 2.82, 2.83, 2.84, 2.85, 2.86, 2.87, 2.88, 2.89, 2.89.1, 2.89.2, 2.89.3, 2.89.4, 2.91, 2.92, 2.93, 2.94, 2.95, 2.96, 2.97, 2.98, 2.99, 2.101, 2.102, 2.103, 2.104, 2.105, 2.106, 2.107, 2.107.1, 2.107.2, 2.107.3, 2.108, 2.109, 2.111, 2.112, 2.113, 2.114, 2.115, 2.116, 2.117, 2.118, 2.119, 2.121, 2.121.1, 2.121.2, 2.121.3, 2.122, 2.123, 2.124, 2.125, 2.126, 2.127, 2.128, 2.129, 2.131, 2.132, 2.133, 2.134, 2.135, 2.136, 2.137, 2.138, 2.138.1, 2.138.2, 2.138.3, 2.138.4, 2.139, 2.141, 2.142, 2.143, 2.144, 2.145, 2.146, 2.147, 2.148, 2.149, 2.150.1, 2.150.2, 2.150.3, 2.151, 2.152, 2.153, 2.154, 2.155, 2.156, 2.157, 2.158, 2.159, 2.161, 2.162, 2.163, 2.164, 2.164.1, 2.164.2, 2.164.3, 2.165, 2.166, 2.167, 2.168, 2.169, 2.171, 2.172, 2.173, 2.174, 2.175, 2.176, 2.176.1, 2.176.2, 2.176.3, 2.176.4, 2.177, 2.178, 2.179, 2.181, 2.182, 2.183, 2.184, 2.185, 2.186, 2.187, 2.189, 2.190.1, 2.190.2, 2.190.3, 2.191, 2.192, 2.193, 2.194, 2.195, 2.196, 2.197, 2.198, 2.199, 2.201, 2.202, 2.203, 2.204, 2.204.1, 2.204.2, 2.205, 2.206, 2.207, 2.208, 2.209, 2.211, 2.212, 2.213 Jenkins LTS версии 2.204.1, 2.190.3, 2.190.2, 2.190.1, 2.176.4, 2.176.3, 2.19.4, 2.19.3, 2.19.2, 2.19.1, 2.7.4, 2.7.3, 2.7.2, 2.7.1, 2.176.2, 2.176.1, 2.164.3, 2.164.2, 2.164.1, 2.150.3, 2.150.2, 2.150.1, 2.138.4, 2.138.3, 2.138.2, 2.138.1, 2.121.3, 2.121.2, 2.121.1, 2.107.3, 2.107.2, 2.107.1, 2.89.4, 2.89.3, 2.89.2, 2.89.1, 2.73.3, 2.73.2, 2.73.1, 2.60.3, 2.60.2, 2.60.1, 2.46.3, 2.46.2, 2.46.1, 2.32.3, 2.32.2, 2.32.1 |
| Описание: | Improper Authentication in Jenkins and LTS |
| URL производителя: |
https://jenkins.io/ |
| Решение: | Установите исправление с сайта производителя. |
| Ссылки: | https://www.cybersecurity-help.cz/vdb/SB2020013004 |