CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Sounds >> 0.4 Security Vulnerabilities

CVE-2020-2098

A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the OS user account running Jenkins.

CVSS Score

8.8

EPSS Score

0.002

Published

2020-01-15

CVE-2020-2097

Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins.

CVSS Score

8.8

EPSS Score

0.001

Published

2020-01-15

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Sounds >> 0.4 Security Vulnerabilities

Products

Pricing

Contact Us