Jenkins Config Rotator
Do you want an email whenever new security vulnerabilities are reported in Jenkins Config Rotator?
By the Year
In 2024 there have been 0 vulnerabilities in Jenkins Config Rotator . Config Rotator did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 1 | 7.50 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Config Rotator vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Config Rotator Security Vulnerabilities
Jenkins Config Rotator Plugin 2.0.1 and earlier does not restrict a file name query parameter in an HTTP endpoint
CVE-2022-45388
7.5 - High
- November 15, 2022
Jenkins Config Rotator Plugin 2.0.1 and earlier does not restrict a file name query parameter in an HTTP endpoint, allowing unauthenticated attackers to read arbitrary files with '.xml' extension on the Jenkins controller file system.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Config Rotator or by Jenkins? Click the Watch button to subscribe.
