Description

A denial of service vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.

Remediation

References

CVE-2018-1999044

Related Vulnerabilities

XWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2020-13654)

WordPress Plugin WP Fastest Cache SQL Injection (0.8.4.8)

MySQL CVE-2013-1548 Vulnerability (CVE-2013-1548)

WordPress Plugin CheetahO Image Compression and Optimizer Unspecified Vulnerability (1.4.2.1)

WordPress Plugin Events Registration with PayPal IPN Multiple SQL Injection Vulnerabilities (2.1.2)

Severity

Medium

Classification

CVE-2018-1999044 CWE-835 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities