CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2023-07-26

unknownCVE-2023-39151CVE-2023-39152CVE-2023-39153CVE-2023-3414CVE-2023-3442CVE-2023-39154
Affects Jenkins Core Affects plugin: Bazaar Affects plugin: Chef Identity Affects plugin: GitLab Authentication Affects plugin: Gradle Affects plugin: Qualys Web App Scanning Connector Affects plugin: ServiceNow DevOps

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2023-07-26
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2023-07-26/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2023-39151coverage & exploitation statusNVD · CVE.org
CVE-2023-39152coverage & exploitation statusNVD · CVE.org
CVE-2023-39153coverage & exploitation statusNVD · CVE.org
CVE-2023-3414coverage & exploitation statusNVD · CVE.org
CVE-2023-3442coverage & exploitation statusNVD · CVE.org
CVE-2023-39154coverage & exploitation statusNVD · CVE.org
CVE-2023-39155coverage & exploitation statusNVD · CVE.org
CVE-2023-39156coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories