Assembla Jenkins Assembla

Do you want an email whenever new security vulnerabilities are reported in Jenkins Assembla?

By the Year

In 2023 there have been 1 vulnerability in Jenkins Assembla with an average score of 8.8 out of ten. Assembla did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2023 as compared to last year.

Year Vulnerabilities Average Score
2023 1 8.80
2022 0 0.00
2021 0 0.00
2020 0 0.00
2019 1 5.50
2018 0 0.00

It may take a day or so for new Assembla vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Jenkins Assembla Security Vulnerabilities

A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Auth Plugin 1.14 and earlier

CVE-2023-37961 8.8 - High - July 12, 2023

A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Auth Plugin 1.14 and earlier allows attackers to trick users into logging in to the attacker's account.

Session Riding

Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they

CVE-2019-10420 5.5 - Medium - September 25, 2019

Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.

Insufficiently Protected Credentials

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Jenkins Assembla or by Jenkins? Click the Watch button to subscribe.

Jenkins
Vendor

subscribe