FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-09 05:46:40 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
402fccd0-5b6d-11ee-9898-00e081b7aa2d	jenkins -- multiple vulnerabilities Jenkins Security Advisory: Description (Medium) SECURITY-3261 / CVE-2023-43494 Builds can be filtered by values of sensitive build variables (High) SECURITY-3245 / CVE-2023-43495 Stored XSS vulnerability (High) SECURITY-3072 / CVE-2023-43496 Temporary plugin file created with insecure permissions (Low) SECURITY-3073 / CVE-2023-43497 (Stapler), CVE-2023-43498 (MultipartFormDataParser) Temporary uploaded file created with insecure permissions Discovery 2023-09-20 Entry 2023-09-25 jenkins < 2.424 jenkins-lts < 2.414.2 CVE-2023-43494 CVE-2023-43495 CVE-2023-43496 CVE-2023-43497 https://www.jenkins.io/security/advisory/2023-09-20/

VuXML ID

Description

402fccd0-5b6d-11ee-9898-00e081b7aa2d

jenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(Medium) SECURITY-3261 / CVE-2023-43494

Builds can be filtered by values of sensitive build variables

(High) SECURITY-3245 / CVE-2023-43495

Stored XSS vulnerability

(High) SECURITY-3072 / CVE-2023-43496

Temporary plugin file created with insecure permissions

(Low) SECURITY-3073 / CVE-2023-43497 (Stapler), CVE-2023-43498 (MultipartFormDataParser)

Temporary uploaded file created with insecure permissions

Discovery 2023-09-20
Entry 2023-09-25
jenkins

< 2.424

jenkins-lts

< 2.414.2

CVE-2023-43494
CVE-2023-43495
CVE-2023-43496
CVE-2023-43497
https://www.jenkins.io/security/advisory/2023-09-20/