CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2023-09-06

unknownCVE-2023-41930CVE-2023-41931CVE-2023-41932CVE-2023-41933CVE-2023-41934CVE-2023-41935
Affects plugin: Assembla Auth Affects plugin: AWS CodeCommit Trigger Affects plugin: Bitbucket Push and Pull Request Affects plugin: Frugal Testing Affects plugin: Google Login Affects plugin: Ivy Affects plugin: Job Configuration History Affects plugin: Microsoft Entra ID (previously Azure AD) Affects plugin: Pipeline Maven Integration Affects plugin: Qualys Container Scanning Connector Affects plugin: SSH2 Easy Affects plugin: TAP

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2023-09-06
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2023-09-06/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2023-41930coverage & exploitation statusNVD · CVE.org
CVE-2023-41931coverage & exploitation statusNVD · CVE.org
CVE-2023-41932coverage & exploitation statusNVD · CVE.org
CVE-2023-41933coverage & exploitation statusNVD · CVE.org
CVE-2023-41934coverage & exploitation statusNVD · CVE.org
CVE-2023-41935coverage & exploitation statusNVD · CVE.org
CVE-2023-41936coverage & exploitation statusNVD · CVE.org
CVE-2023-41937coverage & exploitation statusNVD · CVE.org
CVE-2023-4777coverage & exploitation statusNVD · CVE.org
CVE-2022-46751coverage & exploitation statusNVD · CVE.org
CVE-2023-41938coverage & exploitation statusNVD · CVE.org
CVE-2023-41939coverage & exploitation statusNVD · CVE.org
CVE-2023-41940coverage & exploitation statusNVD · CVE.org
CVE-2023-41941coverage & exploitation statusNVD · CVE.org
CVE-2023-41942coverage & exploitation statusNVD · CVE.org
CVE-2023-41943coverage & exploitation statusNVD · CVE.org
CVE-2023-41944coverage & exploitation statusNVD · CVE.org
CVE-2023-41945coverage & exploitation statusNVD · CVE.org
CVE-2023-41946coverage & exploitation statusNVD · CVE.org
CVE-2023-41947coverage & exploitation statusNVD · CVE.org

Same CVEs, other sources

How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.

More from Jenkins Security Advisories