Every CVE whose affected-product data names Jenkins Blue Ocean, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2023-40341 — CVSS 8.8 (high): A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.27.5 and earlier allows attackers to connect to an…
CVE-2017-1000106 — CVSS 8.5 (high): Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches…
CVE-2020-2254 — CVSS 6.5 (medium): Jenkins Blue Ocean Plugin 1.23.2 and earlier provides an undocumented feature flag that, when enabled, allows an attacker with…
CVE-2019-1003012 — CVSS 6.5 (medium): A data modification vulnerability exists in Jenkins Blue Ocean Plugins 1.10.1 and earlier in blueocean-core-js/src/js/bundleStartup.js…
CVE-2022-30952 — CVSS 6.5 (medium): Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with…
CVE-2022-30953 — CVSS 6.5 (medium): A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an…
CVE-2022-30954 — CVSS 6.5 (medium): Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with…
CVE-2019-1003013 — CVSS 5.4 (medium): An cross-site scripting vulnerability exists in Jenkins Blue Ocean Plugins 1.10.1 and earlier in blueocean-commons/src/main/java/io/jenkins/…
CVE-2017-1000105 — CVSS 5.3 (medium): The optional Run/Artifacts permission can be enabled by setting a Java system property. Blue Ocean did not check this permission before…
CVE-2017-1000110 — CVSS 4.3 (medium): Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches…
CVE-2020-2255 — CVSS 4.3 (medium): A missing permission check in Jenkins Blue Ocean Plugin 1.23.2 and earlier allows attackers with Overall/Read permission to connect to an…