org.jenkins-ci.main:jenkins-core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2021-21607Mediumorg.jenkins-ci.main:jenkins-core: Excessive memory allocation in graph URLs leads to denial of service in JenkinsCVE-2021-21606Mediumorg.jenkins-ci.main:jenkins-core: Arbitrary file existence check in file fingerprints in JenkinsCVE-2021-21602Mediumorg.jenkins-ci.main:jenkins-core: Arbitrary file read vulnerability in workspace browsers in JenkinsCVE-2021-21604Highorg.jenkins-ci.main:jenkins-core: Improper handling of REST API XML deserialization errors in JenkinsCVE-2021-21608Mediumorg.jenkins-ci.main:jenkins-core: Stored XSS vulnerability in Jenkins button labelsCVE-2021-21609Mediumorg.jenkins-ci.main:jenkins-core: Missing permission check for paths with specific prefix in JenkinsCVE-2021-21603Mediumorg.jenkins-ci.main:jenkins-core: XSS vulnerability in Jenkins notification barCVE-2020-2230Highorg.jenkins-ci.main:jenkins-core: Jenkins Cross-site Scripting vulnerability in project naming strategyCVE-2020-2229Highorg.jenkins-ci.main:jenkins-core: Jenkins Cross-Site Scripting vulnerability in help iconsCVE-2020-2231Mediumorg.jenkins-ci.main:jenkins-core: Improper Neutralization of Input During Web Page Generation in JenkinsCVE-2020-2222Highorg.jenkins-ci.main:jenkins-core: Stored XSS vulnerability in Jenkins 'keep forever' badge iconCVE-2020-2223Highorg.jenkins-ci.main:jenkins-core: Stored XSS vulnerability in Jenkins console linksCVE-2020-2220Highorg.jenkins-ci.main:jenkins-core: Stored XSS vulnerability in Jenkins job build time trendCVE-2020-2221Highorg.jenkins-ci.main:jenkins-core: Stored XSS vulnerability in Jenkins upstream causeCVE-2020-2163Mediumorg.jenkins-ci.main:jenkins-core: Improper Neutralization of Input During Web Page Generation in JenkinsCVE-2020-2161Mediumorg.jenkins-ci.main:jenkins-core: Improper Neutralization of Input During Web Page Generation in JenkinsCVE-2020-2160Highorg.jenkins-ci.main:jenkins-core: Cross-Site Request Forgery in JenkinsCVE-2020-2162Mediumorg.jenkins-ci.main:jenkins-core: Improper Neutralization of Input During Web Page Generation in JenkinsCVE-2020-2105Loworg.jenkins-ci.main:jenkins-core: Jenkins REST APIs vulnerable to clickjackingCVE-2020-2104Mediumorg.jenkins-ci.main:jenkins-core: Memory usage graphs accessible to anyone with Overall/ReadCVE-2020-2099Highorg.jenkins-ci.main:jenkins-core: Inbound TCP Agent Protocol/3 authentication bypass in JenkinsCVE-2020-2103Mediumorg.jenkins-ci.main:jenkins-core: Jenkins Diagnostic page exposed session cookiesCVE-2020-2102Mediumorg.jenkins-ci.main:jenkins-core: Non-constant time HMAC comparisonCVE-2020-2100Mediumorg.jenkins-ci.main:jenkins-core: Jenkins vulnerable to UDP amplification reflection attackCVE-2020-2101Mediumorg.jenkins-ci.main:jenkins-core: Non-constant time comparison of inbound TCP agent connection secret

Stop the waste.
Protect your environment with Kodem.