CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2310

Missing permission checks in Jenkins Ansible Plugin 1.0 and earlier allow attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.7%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

Products affected by CVE-2020-2310

Jenkins » Ansible » Version: 0.1

cpe:2.3:a:jenkins:ansible:0.1
Jenkins » Ansible » Version: 0.2

cpe:2.3:a:jenkins:ansible:0.2
Jenkins » Ansible » Version: 0.3

cpe:2.3:a:jenkins:ansible:0.3
Jenkins » Ansible » Version: 0.3.1

cpe:2.3:a:jenkins:ansible:0.3.1
Jenkins » Ansible » Version: 0.4

cpe:2.3:a:jenkins:ansible:0.4
Jenkins » Ansible » Version: 0.5

cpe:2.3:a:jenkins:ansible:0.5
Jenkins » Ansible » Version: 0.6

cpe:2.3:a:jenkins:ansible:0.6
Jenkins » Ansible » Version: 0.6.1

cpe:2.3:a:jenkins:ansible:0.6.1
Jenkins » Ansible » Version: 0.6.2

cpe:2.3:a:jenkins:ansible:0.6.2
Jenkins » Ansible » Version: 0.7

cpe:2.3:a:jenkins:ansible:0.7
Jenkins » Ansible » Version: 0.8

cpe:2.3:a:jenkins:ansible:0.8
Jenkins » Ansible » Version: 1.0

cpe:2.3:a:jenkins:ansible:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2310

Products

Pricing

Contact Us