Vulnerability Database
289,599
Total vulnerabilities in the database
CVE-2023-27901
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier uses the Apache Commons FileUpload library without specifying limits for the number of request parts introduced in version 1.5 for CVE-2023-24998 in org.kohsuke.stapler.RequestImpl, allowing attackers to trigger a denial of service.
| Software | From | Fixed in |
|---|---|---|
| jenkins / jenkins | - | 2.394 |
| jenkins / jenkins | - | 2.375.4 |
org.jenkins-ci.main / jenkins-core
|
2.388 | 2.394 |
|
org.jenkins-ci.main / jenkins-core
|
- | 2.375.4 |
|
org.jenkins-ci.main / jenkins-core
|
2.376 | 2.387.1 |