Image Tag Parameter Jenkins Image Tag Parameter

Do you want an email whenever new security vulnerabilities are reported in Jenkins Image Tag Parameter?

By the Year

In 2023 there have been 1 vulnerability in Jenkins Image Tag Parameter with an average score of 6.5 out of ten. Last year Image Tag Parameter had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Image Tag Parameter in 2023 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2023 is greater by 1.10.

Year Vulnerabilities Average Score
2023 1 6.50
2022 1 5.40
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Image Tag Parameter vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Jenkins Image Tag Parameter Security Vulnerabilities

Jenkins Image Tag Parameter Plugin 2.0 improperly introduces an option to opt out of SSL/TLS certificate validation when connecting to Docker registries, resulting in job configurations using Image Tag Parameters

CVE-2023-30516 6.5 - Medium - April 12, 2023

Jenkins Image Tag Parameter Plugin 2.0 improperly introduces an option to opt out of SSL/TLS certificate validation when connecting to Docker registries, resulting in job configurations using Image Tag Parameters that were created before 2.0 having SSL/TLS certificate validation disabled by default.

Improper Certificate Validation

Jenkins Image Tag Parameter Plugin 1.10 and earlier does not escape the name and description of Image Tag parameters on views displaying parameters

CVE-2022-34189 5.4 - Medium - June 23, 2022

Jenkins Image Tag Parameter Plugin 1.10 and earlier does not escape the name and description of Image Tag parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Jenkins Image Tag Parameter or by Jenkins? Click the Watch button to subscribe.

Jenkins
Vendor

subscribe