Jenkins Vmware Lab Manager Slaves

Do you want an email whenever new security vulnerabilities are reported in Jenkins Vmware Lab Manager Slaves?

By the Year

In 2024 there have been 0 vulnerabilities in Jenkins Vmware Lab Manager Slaves . Vmware Lab Manager Slaves did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2024	0	0.00
2023	0	0.00
2022	0	0.00
2021	0	0.00
2020	1	6.50
2019	3	6.50
2018	0	0.00

It may take a day or so for new Vmware Lab Manager Slaves vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Jenkins Vmware Lab Manager Slaves Security Vulnerabilities

Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier stores a password unencrypted in the global config.xml file on the Jenkins controller where it

CVE-2020-2319 6.5 - Medium - November 04, 2020

Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier stores a password unencrypted in the global config.xml file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system.

Insufficiently Protected Credentials

Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM.

CVE-2019-10382 6.5 - Medium - August 07, 2019

Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM.

Improper Certificate Validation

A cross-site request forgery vulnerability in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method

CVE-2019-1003078 6.5 - Medium - April 04, 2019

A cross-site request forgery vulnerability in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server.

Session Riding

A missing permission check in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method

CVE-2019-1003079 6.5 - Medium - April 04, 2019

A missing permission check in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.

AuthZ

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Jenkins Vmware Lab Manager Slaves or by Jenkins? Click the Watch button to subscribe.

Jenkins
Vendor

Jenkins Vmware Lab Manager Slaves
Product

Jenkins Vmware Lab Manager Slaves

By the Year

Recent Jenkins Vmware Lab Manager Slaves Security Vulnerabilities

Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier stores a password unencrypted in the global config.xml file on the Jenkins controller where it CVE-2020-2319 6.5 - Medium - November 04, 2020

Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM. CVE-2019-10382 6.5 - Medium - August 07, 2019

A cross-site request forgery vulnerability in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method CVE-2019-1003078 6.5 - Medium - April 04, 2019

A missing permission check in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method CVE-2019-1003079 6.5 - Medium - April 04, 2019