| CVE ID | CVSS3.1 | Exploitable | Vendor | Product | Vulnerability | Date added |
|---|---|---|---|---|---|---|
| CVE-2017-1000353 | 9.8 | True | Jenkins | Jenkins | Jenkins Remote Code Execution Vulnerability | 2025-10-02 00:00:00 |
| CVE-2024-23897 | 9.8 | True | Jenkins | Jenkins Command Line Interface (CLI) | Jenkins Command Line Interface (CLI) Path Traversal Vulnerability | 2024-08-19 00:00:00 |
| CVE-2015-5317 | 7.5 | True | Jenkins | Jenkins User Interface (UI) | Jenkins User Interface (UI) Information Disclosure Vulnerability | 2023-05-12 00:00:00 |
| CVE-2019-1003029 | 9.9 | True | Jenkins | Script Security Plugin | Jenkins Script Security Plugin Sandbox Bypass Vulnerability | 2022-04-25 00:00:00 |
| CVE-2019-1003030 | 9.9 | True | Jenkins | Matrix Project Plugin | Jenkins Matrix Project Plugin Remote Code Execution Vulnerability | 2022-03-25 00:00:00 |
| CVE-2018-1000861 | 9.8 | True | Jenkins | Jenkins Stapler Web Framework | Jenkins Stapler Web Framework Deserialization of Untrusted Data Vulnerability | 2022-02-10 00:00:00 |
AVET INS is an owner of VULNDBASE brand and website. This product uses data from the NVD API but is not endorsed or certified by the NVD. See NVD page for more information. CVE is a registered trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE site. CWE is a registered trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE page. KEV (Known Exploited Vulnerabilities) is a catalog maintained by CISA. EUVD is the official EU repository for timely, curated cybersecurity vulnerability intelligence and remediation guidance run by ENISA. DORA (Digital Operational Resilience Act) is and EU directive.
Copyright AVET INS 1997 - 2026