CVE-2017-2601 — Vulnetix

Try Vulnetix Request Demo

CVE-2017-2601 PUBLISHED

In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.

EPSS 0.33% · 55.5th percentile

Risk Scores

EPSS Score

0.33%

55.5th percentile

Affected Products

Vendor	Product	Versions
Red Hat	Red Hat OpenShift
Jenkins	Jenkins Jenkins
Jenkins	Jenkins Jenkins plugins
Red Hat	Red Hat OpenShift Container Platform
Red Hat	Red Hat Enterprise Linux
Red Hat	Red Hat OpenShift container platform 4.0.51

Timeline

May 10, 2018 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 23, 2021 EPSS Score
Oct 24, 2021 EPSS Score
Dec 25, 2021 EPSS Score
Feb 25, 2022 EPSS Score
Apr 28, 2022 EPSS Score
Jun 29, 2022 EPSS Score
Aug 31, 2022 EPSS Score
Nov 1, 2022 EPSS Score
Jan 2, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0265.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0265 advisory
https://access.redhat.com/errata/RHSA-2023:1064 advisory
https://access.redhat.com/errata/RHSA-2022:2280 advisory
https://access.redhat.com/errata/RHSA-2022:2205 advisory
https://access.redhat.com/errata/RHSA-2022:4947 advisory
https://access.redhat.com/errata/RHSA-2022:4909 advisory
https://www.jenkins.io/security/advisory/2022-04-12/ advisory
https://access.redhat.com/errata/RHSA-2022:2281 advisory
https://access.redhat.com/errata/RHSA-2023:0017 advisory
https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0445.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0445 advisory
https://access.redhat.com/errata/RHSA-2023:0777 advisory
https://access.redhat.com/errata/RHSA-2023:0697 advisory
https://access.redhat.com/errata/RHSA-2023:0698 advisory
https://access.redhat.com/errata/RHSA-2022:9110 advisory
https://access.redhat.com/errata/RHSA-2022:9111 advisory
https://www.jenkins.io/security/advisory/2022-06-22/ advisory
https://access.redhat.com/errata/RHSA-2022:6531 advisory
https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1804.json advisory

…and 20 more

Open in Interactive Console →