CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41932

Jenkins Job Configuration History Plugin 1227.v7a_79fc4dc01f and earlier does not restrict 'timestamp' query parameters in multiple endpoints, allowing attackers with to delete attacker-specified directories on the Jenkins controller file system as long as they contain a file called 'history.xml'.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.5%

CVSS Severity

CVSS v3 Score 6.5

References

Products affected by CVE-2023-41932

Jenkins » Job Configuration History » Version: 1.10

cpe:2.3:a:jenkins:job_configuration_history:1.10
Jenkins » Job Configuration History » Version: 1.11

cpe:2.3:a:jenkins:job_configuration_history:1.11
Jenkins » Job Configuration History » Version: 1.12

cpe:2.3:a:jenkins:job_configuration_history:1.12
Jenkins » Job Configuration History » Version: 1.13

cpe:2.3:a:jenkins:job_configuration_history:1.13
Jenkins » Job Configuration History » Version: 1.9

cpe:2.3:a:jenkins:job_configuration_history:1.9
Jenkins » Job Configuration History » Version: 1119.v509e1017356b_

cpe:2.3:a:jenkins:job_configuration_history:1119.v509e1017356b_
Jenkins » Job Configuration History » Version: 1133.v0f5420f85053

cpe:2.3:a:jenkins:job_configuration_history:1133.v0f5420f85053
Jenkins » Job Configuration History » Version: 1139.v888b_656ca_f6d

cpe:2.3:a:jenkins:job_configuration_history:1139.v888b_656ca_f6d
Jenkins » Job Configuration History » Version: 1146.v94c2521f9213

cpe:2.3:a:jenkins:job_configuration_history:1146.v94c2521f9213
Jenkins » Job Configuration History » Version: 1155.v28a_46a_cc06a_5

cpe:2.3:a:jenkins:job_configuration_history:1155.v28a_46a_cc06a_5
Jenkins » Job Configuration History » Version: 1156.v536a_97b_8d649

cpe:2.3:a:jenkins:job_configuration_history:1156.v536a_97b_8d649
Jenkins » Job Configuration History » Version: 1163.ve82c7c6e60a_3

cpe:2.3:a:jenkins:job_configuration_history:1163.ve82c7c6e60a_3
Jenkins » Job Configuration History » Version: 1165.v8cc9fd1f4597

cpe:2.3:a:jenkins:job_configuration_history:1165.v8cc9fd1f4597
Jenkins » Job Configuration History » Version: 1166.vc9f255f45b_8a

cpe:2.3:a:jenkins:job_configuration_history:1166.vc9f255f45b_8a
Jenkins » Job Configuration History » Version: 1170.v8a_c085b_dd49c

cpe:2.3:a:jenkins:job_configuration_history:1170.v8a_c085b_dd49c
Jenkins » Job Configuration History » Version: 1171.v04b_66d78555e

cpe:2.3:a:jenkins:job_configuration_history:1171.v04b_66d78555e
Jenkins » Job Configuration History » Version: 1176.v1b_4290db_41a_5

cpe:2.3:a:jenkins:job_configuration_history:1176.v1b_4290db_41a_5
Jenkins » Job Configuration History » Version: 1183.v6e2785ff75e0

cpe:2.3:a:jenkins:job_configuration_history:1183.v6e2785ff75e0
Jenkins » Job Configuration History » Version: 1187.v2a_b_1ca_54d18d

cpe:2.3:a:jenkins:job_configuration_history:1187.v2a_b_1ca_54d18d
Jenkins » Job Configuration History » Version: 1191.v168c8c2b_956a

cpe:2.3:a:jenkins:job_configuration_history:1191.v168c8c2b_956a
Jenkins » Job Configuration History » Version: 1198.v4d5736c2308c

cpe:2.3:a:jenkins:job_configuration_history:1198.v4d5736c2308c
Jenkins » Job Configuration History » Version: 1206.vc8967cc8a_2cb

cpe:2.3:a:jenkins:job_configuration_history:1206.vc8967cc8a_2cb
Jenkins » Job Configuration History » Version: 1207.vd28a_54732f92

cpe:2.3:a:jenkins:job_configuration_history:1207.vd28a_54732f92
Jenkins » Job Configuration History » Version: 1212.vd4470d08ff12

cpe:2.3:a:jenkins:job_configuration_history:1212.vd4470d08ff12
Jenkins » Job Configuration History » Version: 1227.v7a_79fc4dc01f

cpe:2.3:a:jenkins:job_configuration_history:1227.v7a_79fc4dc01f
Jenkins » Job Configuration History » Version: 2.0

cpe:2.3:a:jenkins:job_configuration_history:2.0
Jenkins » Job Configuration History » Version: 2.1

cpe:2.3:a:jenkins:job_configuration_history:2.1
Jenkins » Job Configuration History » Version: 2.1.1

cpe:2.3:a:jenkins:job_configuration_history:2.1.1
Jenkins » Job Configuration History » Version: 2.10

cpe:2.3:a:jenkins:job_configuration_history:2.10
Jenkins » Job Configuration History » Version: 2.11

cpe:2.3:a:jenkins:job_configuration_history:2.11
Jenkins » Job Configuration History » Version: 2.12

cpe:2.3:a:jenkins:job_configuration_history:2.12
Jenkins » Job Configuration History » Version: 2.13

cpe:2.3:a:jenkins:job_configuration_history:2.13
Jenkins » Job Configuration History » Version: 2.14

cpe:2.3:a:jenkins:job_configuration_history:2.14
Jenkins » Job Configuration History » Version: 2.15

cpe:2.3:a:jenkins:job_configuration_history:2.15
Jenkins » Job Configuration History » Version: 2.16

cpe:2.3:a:jenkins:job_configuration_history:2.16
Jenkins » Job Configuration History » Version: 2.17

cpe:2.3:a:jenkins:job_configuration_history:2.17
Jenkins » Job Configuration History » Version: 2.18

cpe:2.3:a:jenkins:job_configuration_history:2.18
Jenkins » Job Configuration History » Version: 2.18.1

cpe:2.3:a:jenkins:job_configuration_history:2.18.1
Jenkins » Job Configuration History » Version: 2.18.2

cpe:2.3:a:jenkins:job_configuration_history:2.18.2
Jenkins » Job Configuration History » Version: 2.18.3

cpe:2.3:a:jenkins:job_configuration_history:2.18.3
Jenkins » Job Configuration History » Version: 2.19

cpe:2.3:a:jenkins:job_configuration_history:2.19
Jenkins » Job Configuration History » Version: 2.2

cpe:2.3:a:jenkins:job_configuration_history:2.2
Jenkins » Job Configuration History » Version: 2.20

cpe:2.3:a:jenkins:job_configuration_history:2.20
Jenkins » Job Configuration History » Version: 2.21

cpe:2.3:a:jenkins:job_configuration_history:2.21
Jenkins » Job Configuration History » Version: 2.22

cpe:2.3:a:jenkins:job_configuration_history:2.22
Jenkins » Job Configuration History » Version: 2.23

cpe:2.3:a:jenkins:job_configuration_history:2.23
Jenkins » Job Configuration History » Version: 2.23.1

cpe:2.3:a:jenkins:job_configuration_history:2.23.1
Jenkins » Job Configuration History » Version: 2.24

cpe:2.3:a:jenkins:job_configuration_history:2.24
Jenkins » Job Configuration History » Version: 2.25

cpe:2.3:a:jenkins:job_configuration_history:2.25
Jenkins » Job Configuration History » Version: 2.26

cpe:2.3:a:jenkins:job_configuration_history:2.26
Jenkins » Job Configuration History » Version: 2.27

cpe:2.3:a:jenkins:job_configuration_history:2.27
Jenkins » Job Configuration History » Version: 2.28

cpe:2.3:a:jenkins:job_configuration_history:2.28
Jenkins » Job Configuration History » Version: 2.28.1

cpe:2.3:a:jenkins:job_configuration_history:2.28.1
Jenkins » Job Configuration History » Version: 2.29

cpe:2.3:a:jenkins:job_configuration_history:2.29
Jenkins » Job Configuration History » Version: 2.29-rc1073.41ef89cf4e15

cpe:2.3:a:jenkins:job_configuration_history:2.29-rc1073.41ef89cf4e15
Jenkins » Job Configuration History » Version: 2.3

cpe:2.3:a:jenkins:job_configuration_history:2.3
Jenkins » Job Configuration History » Version: 2.30

cpe:2.3:a:jenkins:job_configuration_history:2.30
Jenkins » Job Configuration History » Version: 2.31-rc1092.de9e11acbcf3

cpe:2.3:a:jenkins:job_configuration_history:2.31-rc1092.de9e11acbcf3
Jenkins » Job Configuration History » Version: 2.31-rc1098.b666422863b2

cpe:2.3:a:jenkins:job_configuration_history:2.31-rc1098.b666422863b2
Jenkins » Job Configuration History » Version: 2.31-rc1107.2354f08725a_8

cpe:2.3:a:jenkins:job_configuration_history:2.31-rc1107.2354f08725a_8
Jenkins » Job Configuration History » Version: 2.31-rc1118.fdcd7d8898ff

cpe:2.3:a:jenkins:job_configuration_history:2.31-rc1118.fdcd7d8898ff
Jenkins » Job Configuration History » Version: 2.4

cpe:2.3:a:jenkins:job_configuration_history:2.4
Jenkins » Job Configuration History » Version: 2.5

cpe:2.3:a:jenkins:job_configuration_history:2.5
Jenkins » Job Configuration History » Version: 2.6

cpe:2.3:a:jenkins:job_configuration_history:2.6
Jenkins » Job Configuration History » Version: 2.8

cpe:2.3:a:jenkins:job_configuration_history:2.8
Jenkins » Job Configuration History » Version: 2.9

cpe:2.3:a:jenkins:job_configuration_history:2.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41932

Products

Pricing

Contact Us