CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2020-02-12

unknownCVE-2020-2109CVE-2020-2110CVE-2020-2111CVE-2020-2112CVE-2020-2113CVE-2020-2114
Affects plugin: Applatix Affects plugin: BMC Release Package and Deployment Affects plugin: brakeman Affects plugin: debian-package-builder Affects plugin: DigitalOcean Affects plugin: Dynamic Extended Choice Parameter Affects plugin: Eagle Tester Affects plugin: ECX Copy Data Management Affects plugin: FitNesse Affects plugin: Git Parameter Affects plugin: Google Kubernetes Engine Affects plugin: Harvest SCM Affects plugin: Microsoft Entra ID (previously Azure AD) Affects plugin: NUnit Affects plugin: Parasoft Environment Manager Affects plugin: Pipeline GitHub Notify Step Affects plugin: Pipeline: Groovy Affects plugin: RadarGun Affects plugin: S3 publisher Affects plugin: Script Security Affects plugin: Subversion

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2020-02-12
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2020-02-12/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2020-2109coverage & exploitation statusNVD · CVE.org
CVE-2020-2110coverage & exploitation statusNVD · CVE.org
CVE-2020-2111coverage & exploitation statusNVD · CVE.org
CVE-2020-2112coverage & exploitation statusNVD · CVE.org
CVE-2020-2113coverage & exploitation statusNVD · CVE.org
CVE-2020-2114coverage & exploitation statusNVD · CVE.org
CVE-2020-2115coverage & exploitation statusNVD · CVE.org
CVE-2020-2116coverage & exploitation statusNVD · CVE.org
CVE-2020-2117coverage & exploitation statusNVD · CVE.org
CVE-2020-2118coverage & exploitation statusNVD · CVE.org
CVE-2020-2119coverage & exploitation statusNVD · CVE.org
CVE-2020-2120coverage & exploitation statusNVD · CVE.org
CVE-2020-2121coverage & exploitation statusNVD · CVE.org
CVE-2020-2122coverage & exploitation statusNVD · CVE.org
CVE-2020-2123coverage & exploitation statusNVD · CVE.org
CVE-2020-2124coverage & exploitation statusNVD · CVE.org
CVE-2020-2125coverage & exploitation statusNVD · CVE.org
CVE-2020-2126coverage & exploitation statusNVD · CVE.org
CVE-2020-2127coverage & exploitation statusNVD · CVE.org
CVE-2020-2128coverage & exploitation statusNVD · CVE.org
CVE-2020-2129coverage & exploitation statusNVD · CVE.org
CVE-2020-2130coverage & exploitation statusNVD · CVE.org
CVE-2020-2131coverage & exploitation statusNVD · CVE.org
CVE-2020-2132coverage & exploitation statusNVD · CVE.org
CVE-2020-2133coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories