Vulnerabilities (CVE)

Filtered by vendor Jenkins Subscribe
Filtered by product Mongodb
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-2268 1 Jenkins 1 Mongodb 2024-11-21 6.8 MEDIUM 8.8 HIGH
A cross-site request forgery (CSRF) vulnerability in Jenkins MongoDB Plugin 1.3 and earlier allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller.
CVE-2020-2267 1 Jenkins 1 Mongodb 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
A missing permission check in Jenkins MongoDB Plugin 1.3 and earlier allows attackers with Overall/Read permission to gain access to some metadata of any arbitrary files on the Jenkins controller.