Skip to main content

Parameterized Trigger

2 CVEs product

Monthly

CVE-2022-27195 Maven MEDIUM PATCH This Month

Jenkins Parameterized Trigger Plugin 2.43 and earlier captures environment variables passed to builds triggered using Jenkins Parameterized Trigger Plugin, including password parameter values, in. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Jenkins Information Disclosure Parameterized Trigger
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2017-1000084 Maven MEDIUM PATCH This Month

Parameterized Trigger Plugin fails to check Item/Build permission: The Parameterized Trigger Plugin did not check the build authentication it was running as and allowed triggering any other project. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Jenkins Privilege Escalation Parameterized Trigger
NVD
CVSS 3.0
6.5
EPSS
0.0%
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Jenkins Parameterized Trigger Plugin 2.43 and earlier captures environment variables passed to builds triggered using Jenkins Parameterized Trigger Plugin, including password parameter values, in. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Jenkins Information Disclosure Parameterized Trigger
NVD
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

Parameterized Trigger Plugin fails to check Item/Build permission: The Parameterized Trigger Plugin did not check the build authentication it was running as and allowed triggering any other project. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Jenkins Privilege Escalation Parameterized Trigger
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy