Jenkins Rapiddeploy

Do you want an email whenever new security vulnerabilities are reported in Jenkins Rapiddeploy?

By the Year

In 2023 there have been 0 vulnerabilities in Jenkins Rapiddeploy . Rapiddeploy did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2023	0	0.00
2022	0	0.00
2021	0	0.00
2020	2	7.10
2019	2	6.55
2018	0	0.00

It may take a day or so for new Rapiddeploy vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Jenkins Rapiddeploy Security Vulnerabilities

Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained

CVE-2020-2170 5.4 - Medium - March 25, 2020

Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability.

XSS

Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

CVE-2020-2171 8.8 - High - March 25, 2020

Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

XXE

A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier

CVE-2019-16570 8.8 - High - December 17, 2019

A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers to connect to an attacker-specified web server.

Session Riding

A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier

CVE-2019-16571 4.3 - Medium - December 17, 2019

A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server.

Incorrect Permission Assignment for Critical Resource

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Jenkins Rapiddeploy or by Jenkins? Click the Watch button to subscribe.

Jenkins
Vendor

Jenkins Rapiddeploy
Product

By the Year

Recent Jenkins Rapiddeploy Security Vulnerabilities

Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained CVE-2020-2170 5.4 - Medium - March 25, 2020

Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. CVE-2020-2171 8.8 - High - March 25, 2020

A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier CVE-2019-16570 8.8 - High - December 17, 2019

A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier CVE-2019-16571 4.3 - Medium - December 17, 2019