Beaker Builder Jenkins Beaker Builder

Do you want an email whenever new security vulnerabilities are reported in Jenkins Beaker Builder?

By the Year

In 2023 there have been 0 vulnerabilities in Jenkins Beaker Builder . Last year Beaker Builder had 2 security vulnerabilities published. Right now, Beaker Builder is on track to have less security vulnerabilities in 2023 than it did last year.

Year Vulnerabilities Average Score
2023 0 0.00
2022 2 5.40
2021 0 0.00
2020 0 0.00
2019 1 5.50
2018 0 0.00

It may take a day or so for new Beaker Builder vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Jenkins Beaker Builder Security Vulnerabilities

A cross-site request forgery (CSRF) vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier

CVE-2022-34207 6.5 - Medium - June 23, 2022

A cross-site request forgery (CSRF) vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL.

Session Riding

A missing permission check in Jenkins Beaker builder Plugin 1.10 and earlier

CVE-2022-34208 4.3 - Medium - June 23, 2022

A missing permission check in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.

AuthZ

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system.

CVE-2019-10398 5.5 - Medium - September 12, 2019

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system.

Insufficiently Protected Credentials

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Jenkins Beaker Builder or by Jenkins? Click the Watch button to subscribe.

Jenkins
Vendor

subscribe