Jenkins Openstack Heat
By the Year
In 2023 there have been 0 vulnerabilities in Jenkins Openstack Heat . Last year Openstack Heat had 3 security vulnerabilities published. Right now, Openstack Heat is on track to have less security vulnerabilities in 2023 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2023 | 0 | 0.00 |
2022 | 3 | 5.03 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Openstack Heat vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Openstack Heat Security Vulnerabilities
A cross-site request forgery (CSRF) vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier
CVE-2022-36911
6.5 - Medium
- July 27, 2022
A cross-site request forgery (CSRF) vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL.
Session Riding
Jenkins Openstack Heat Plugin 1.5 and earlier does not perform permission checks in methods implementing form validation
CVE-2022-36913
4.3 - Medium
- July 27, 2022
Jenkins Openstack Heat Plugin 1.5 and earlier does not perform permission checks in methods implementing form validation, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system.
AuthZ
A missing permission check in Jenkins Openstack Heat Plugin 1.5 and earlier
CVE-2022-36912
4.3 - Medium
- July 27, 2022
A missing permission check in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.
AuthZ
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Openstack Heat or by Jenkins? Click the Watch button to subscribe.
