Jenkins plugins 多個弱點 (2023 年 1 月 24 日)

critical Nessus Plugin ID 171929

版本 1.3

Oct 24, 2023, 4:27 PM

  • CVSSv3 score source (set to "CVE-2023-24456")
  • Exploit attributes ("Exploit available" set to "False")

Plugin Feed: 202310241627

版本 1.2

Jul 28, 2023, 9:58 AM

  • Logic Changes (adjusted to match vcf_extras.inc and jenkins_detect.inc changes)

Plugin Feed: 202307280958

版本 1.1

Feb 28, 2023, 3:59 PM

  • CVSS metrics ("CVSSv2 score" changed from "7.5" to "10.0". "CVSSv2 score" changed from "7.5" to "10.0". "CVSSv2 score" changed from "7.5" to "10.0". "CVSSv2 score" changed from "7.5" to "10.0". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C")
  • CVSSv2 score source (changed from "CVE-2023-24456" to "CVE-2023-24458")
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "False". "Exploit available" set to "False". "Exploit available" set to "False". "Exploitability ease" set to "No known exploits are available". "Exploitability ease" set to "No known exploits are available". "Exploitability ease" set to "No known exploits are available". "Exploitability ease" set to "No known exploits are available")

Plugin Feed: 202302281559

版本 1.0

Feb 27, 2023, 10:39 PM

  • New

Plugin Feed: 202302272239

* Changelogs are generally available for changes made after Nov 1, 2022