CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2020-10-08

unknownCVE-2020-2286CVE-2020-2287CVE-2020-2288CVE-2020-2289CVE-2020-2290CVE-2020-2291
Affects plugin: Active Choices Affects plugin: Audit Trail Affects plugin: couchdb-statistics Affects plugin: Maven Cascade Release Affects plugin: Nerrvana Affects plugin: Persona Affects plugin: Release Affects plugin: Role-based Authorization Strategy Affects plugin: Shared Objects Affects plugin: SMS Notification

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2020-10-08
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2020-10-08/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2020-2286coverage & exploitation statusNVD · CVE.org
CVE-2020-2287coverage & exploitation statusNVD · CVE.org
CVE-2020-2288coverage & exploitation statusNVD · CVE.org
CVE-2020-2289coverage & exploitation statusNVD · CVE.org
CVE-2020-2290coverage & exploitation statusNVD · CVE.org
CVE-2020-2291coverage & exploitation statusNVD · CVE.org
CVE-2020-2292coverage & exploitation statusNVD · CVE.org
CVE-2020-2293coverage & exploitation statusNVD · CVE.org
CVE-2020-2294coverage & exploitation statusNVD · CVE.org
CVE-2020-2295coverage & exploitation statusNVD · CVE.org
CVE-2020-2296coverage & exploitation statusNVD · CVE.org
CVE-2020-2297coverage & exploitation statusNVD · CVE.org
CVE-2020-2298coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories