Jenkins Assembla
By the Year
In 2023 there have been 1 vulnerability in Jenkins Assembla with an average score of 8.8 out of ten. Assembla did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2023 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 1 | 8.80 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 1 | 5.50 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Assembla vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Assembla Security Vulnerabilities
A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Auth Plugin 1.14 and earlier
CVE-2023-37961
8.8 - High
- July 12, 2023
A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Auth Plugin 1.14 and earlier allows attackers to trick users into logging in to the attacker's account.
Session Riding
Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they
CVE-2019-10420
5.5 - Medium
- September 25, 2019
Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Insufficiently Protected Credentials
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Assembla or by Jenkins? Click the Watch button to subscribe.
