Description

REST API endpoints in Jenkins 2.218 and earlier, LTS 2.204.1 and earlier were vulnerable to clickjacking attacks.

Remediation

References

CVE-2020-2105

Related Vulnerabilities

PHP Other Vulnerability (CVE-2002-1954)

WordPress Plugin WP Prayer Multiple Cross-Site Request Forgery Vulnerabilities (1.6.5)

MySQL CVE-2021-2172 Vulnerability (CVE-2021-2172)

WordPress Plugin Contact Form DB Cross-Site Scripting (2.10.29)

WordPress Plugin User Registration, Login & Landing Pages-LeadMagic Cross-Site Scripting (1.2.7)

Severity

Medium

Classification

CVE-2020-2105 CWE-1021 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities