Published: 24/02/2020 Updated: 04/03/2020

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Hash collision attack vulnerability in Jenkins prior to 1.447, Jenkins LTS prior to 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x prior to 1.424.2.1 and 1.400.x prior to 1.400.0.11 could allow remote malicious users to cause a considerable CPU load, aka "the Hash DoS attack."

Vulnerable Product	Search on Vulmon	Subscribe to Product
cloudbees jenkins
jenkins jenkins

StackRox Workshop - andycinfo/roxshop clemenko@redhatcom | @clemenko Agenda Pre-requisites Choose Your Own Adventure K3s Ingress Storage Code StackRox Install Offline Install Online Authentication Policies Stages Integrations & Plugins API & Tokens Scanner Integration Documentation Troubleshooting StackRox Demo Compliance Network Violatio

CWE-400 https://access.redhat.com/security/cve/cve-2012-0785 http://www.openwall.com/lists/oss-security/2012/01/20/8 https://security-tracker.debian.org/tracker/CVE-2012-0785 https://jenkins.io/security/advisory/2012-01-12/https://www.cloudbees.com/jenkins-security-advisory-2012-01-12 https://nvd.nist.gov https://github.com/clemenko/workshop

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-0785

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect