CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Git Client >> 1.19.1 Security Vulnerabilities

CVE-2022-36881

Jenkins Git client Plugin 3.11.0 and earlier does not perform SSH host key verification when connecting to Git repositories via SSH, enabling man-in-the-middle attacks.

CVSS Score

8.1

EPSS Score

0.002

Published

2022-07-27

CVE-2019-10392

Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection.

CVSS Score

8.8

EPSS Score

0.846

Published

2019-09-12

CVE-2017-1000242

Jenkins Git Client Plugin 2.4.2 and earlier creates temporary file with insecure permissions resulting in information disclosure

CVSS Score

3.3

EPSS Score

0.0

Published

2017-11-01

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Git Client >> 1.19.1 Security Vulnerabilities

Products

Pricing

Contact Us