Jenkins Rapiddeploy
By the Year
In 2023 there have been 0 vulnerabilities in Jenkins Rapiddeploy . Rapiddeploy did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 2 | 7.10 |
| 2019 | 2 | 6.55 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Rapiddeploy vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Rapiddeploy Security Vulnerabilities
Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained
CVE-2020-2170
5.4 - Medium
- March 25, 2020
Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability.
XSS
Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CVE-2020-2171
8.8 - High
- March 25, 2020
Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
XXE
A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier
CVE-2019-16570
8.8 - High
- December 17, 2019
A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers to connect to an attacker-specified web server.
Session Riding
A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier
CVE-2019-16571
4.3 - Medium
- December 17, 2019
A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server.
AuthZ
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Rapiddeploy or by Jenkins? Click the Watch button to subscribe.
