Description

A denial of service vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.

Remediation

References

CVE-2018-1999044

Related Vulnerabilities

Apache HTTP Server Other Vulnerability (CVE-1999-0045)

WordPress Plugin Xerte Online 'save.php' Arbitrary File Upload (0.32)

WordPress Plugin BuddyPress Information Disclosure (5.1.1)

Apache HTTP Server CVE-2014-0098 Vulnerability (CVE-2014-0098)

WordPress Plugin Relevanssi Premium-A Better Search Cross-Site Scripting (1.14.8)

Severity

Medium

Classification

CVE-2018-1999044 CWE-835 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities