CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Collabnet Security Vulnerabilities

CVE-2022-38665

Jenkins CollabNet Plugins Plugin 2.0.8 and earlier stores a RabbitMQ password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system.

CVSS Score

6.5

EPSS Score

0.001

Published

2022-08-23

CVE-2018-1000605

A man in the middle vulnerability exists in Jenkins CollabNet Plugin 2.0.4 and earlier in CollabNetApp.java, CollabNetPlugin.java, CNFormFieldValidator.java that allows attackers to impersonate any service that Jenkins connects to.

CVSS Score

7.4

EPSS Score

0.0

Published

2018-06-26

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Collabnet Security Vulnerabilities

Products

Pricing

Contact Us