CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2020-01-15

unknownCVE-2020-2090CVE-2020-2091CVE-2020-2092CVE-2020-2093CVE-2020-2094CVE-2020-2095
Affects plugin: Amazon EC2 Affects plugin: gitlab-hook Affects plugin: Health Advisor by CloudBees Affects plugin: Redgate SQL Change Automation Affects plugin: Robot Framework Affects plugin: Sounds

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2020-01-15
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2020-01-15/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2020-2090coverage & exploitation statusNVD · CVE.org
CVE-2020-2091coverage & exploitation statusNVD · CVE.org
CVE-2020-2092coverage & exploitation statusNVD · CVE.org
CVE-2020-2093coverage & exploitation statusNVD · CVE.org
CVE-2020-2094coverage & exploitation statusNVD · CVE.org
CVE-2020-2095coverage & exploitation statusNVD · CVE.org
CVE-2020-2096coverage & exploitation statusNVD · CVE.org
CVE-2020-2097coverage & exploitation statusNVD · CVE.org
CVE-2020-2098coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories