CVE-2019-16570

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-16570
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16570.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-16570
Aliases
Published
2019-12-17T15:15:22.410Z
Modified
2026-04-10T04:15:57.035544Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers to connect to an attacker-specified web server.

References

Affected packages

Git / github.com/jenkinsci/rapiddeploy-plugin

Affected ranges

Type
GIT
Repo
https://github.com/jenkinsci/rapiddeploy-plugin
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
7ca32c8e902dbdc7f3a75e4bfe17cbffeb7e81ac
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "4.1"
        }
    ]
}

Affected versions

rapiddeploy-jenkins-1.*
rapiddeploy-jenkins-1.1
rapiddeploy-jenkins-2.*
rapiddeploy-jenkins-2.1
rapiddeploy-jenkins-3.*
rapiddeploy-jenkins-3.1
rapiddeploy-jenkins-3.10
rapiddeploy-jenkins-3.11
rapiddeploy-jenkins-3.2
rapiddeploy-jenkins-3.3
rapiddeploy-jenkins-3.4
rapiddeploy-jenkins-3.5
rapiddeploy-jenkins-3.6
rapiddeploy-jenkins-3.7
rapiddeploy-jenkins-3.8
rapiddeploy-jenkins-3.9
rapiddeploy-jenkins-4.*
rapiddeploy-jenkins-4.0
rapiddeploy-jenkins-4.1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16570.json"