CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2020-12-03

unknownCVE-2020-2324CVE-2020-2320CVE-2020-2321CVE-2020-2322CVE-2020-2323
Affects plugin: Chaos Monkey Affects plugin: CVS Affects plugin: Shelve Project Affects Plugin Installation Manager Tool

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2020-12-03
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2020-12-03/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2020-2324coverage & exploitation statusNVD · CVE.org
CVE-2020-2320coverage & exploitation statusNVD · CVE.org
CVE-2020-2321coverage & exploitation statusNVD · CVE.org
CVE-2020-2322coverage & exploitation statusNVD · CVE.org
CVE-2020-2323coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories