VDB
WID-SEC-W-2024-3071
WID-SEC-W-2024-3071
PUBLISHED
Jenkins ist ein erweiterbarer, webbasierter Integration Server zur kontinuierlichen Unterstützung bei Softwareentwicklungen aller Art.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Jenkins Jenkins Credentials Plugin <1381.v2c3a_12074da_b | ||
| Jenkins Jenkins LTS 2.462.3 | ||
| Jenkins Jenkins Credentials Plugin 1381.v2c3a_12074da_b | ||
| Red Hat Enterprise Linux | ||
| Jenkins Jenkins 2.479 | ||
| Jenkins Jenkins OpenId Connect Authentication Plugin <4.355.v3a_fb_fca_b_96d4 | ||
| Jenkins Jenkins <2.479 | ||
| Jenkins Jenkins OpenId Connect Authentication Plugin 4.355.v3a_fb_fca_b_96d4 | ||
| Jenkins Jenkins LTS <2.462.3 |
Timeline
- Oct 3, 2024 CVE Published
- Nov 5, 2024 CVE Updated
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3071.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3071 advisory
- https://www.jenkins.io/security/advisory/2024-10-02/ url
- https://access.redhat.com/errata/RHSA-2024:8887 url
- https://access.redhat.com/errata/RHSA-2024:8884 url
- https://access.redhat.com/errata/RHSA-2024:8885 url
- https://access.redhat.com/errata/RHSA-2024:8886 url