Language:
Severity: Medium
ID: 191677
File Name: jenkins_security_advisory_2024-03-06_plugins.nasl
Version: 1.2
Type: combined
Agent: windows, macosx, unix
Family: CGI abuses
Published: 3/7/2024
Updated: 10/3/2024
Configuration: Enable thorough checks
Supported Sensors: Nessus Agent, Nessus
Enable CGI Scanning: true
Risk Factor: Medium
Score: 6.1
Risk Factor: Medium
Base Score: 5.4
Temporal Score: 4.2
Vector: CVSS2#AV:N/AC:H/Au:N/C:N/I:C/A:N
CVSS Score Source: CVE-2023-48795
Risk Factor: Medium
Base Score: 5.9
Temporal Score: 5.3
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CPE: cpe:/a:cloudbees:jenkins, cpe:/a:jenkins:jenkins
Required KB Items: installed_sw/Jenkins
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/6/2024
Vulnerability Publication Date: 12/18/2023
CVE: CVE-2023-48795, CVE-2024-2215, CVE-2024-2216, CVE-2024-28149, CVE-2024-28150, CVE-2024-28151, CVE-2024-28152, CVE-2024-28153, CVE-2024-28154, CVE-2024-28155, CVE-2024-28156, CVE-2024-28157, CVE-2024-28158, CVE-2024-28159, CVE-2024-28160, CVE-2024-28161, CVE-2024-28162