Description

Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "the Hash DoS attack."

Remediation

References

CVE-2012-0785

Related Vulnerabilities

MySQL CVE-2023-21876 Vulnerability (CVE-2023-21876)

WordPress Plugin LifterLMS-WP LMS for eLearning, Online Courses, & Quizzes Multiple Cross-Site Scripting Vulnerabilities (4.21.0)

Oracle Database Server CVE-2015-0479 Vulnerability (CVE-2015-0479)

WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.16)

MySQL CVE-2014-6463 Vulnerability (CVE-2014-6463)

Severity

High

Classification

CVE-2012-0785 CWE-400 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities