[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-RHSA-2023:3663":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":48,"duplicates":49,"related":50,"reserved_at":9,"published_at":51,"modified_at":52,"state":9,"summary":53,"references_raw":55,"kevs":404,"epss":9,"epss_history":405,"metrics":406,"affected":413},"RHSA-2023:3663","Red Hat Security Advisory: jenkins and jenkins-2-plugins security update",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46],{"_key":15},"CVE-2022-2048",{"_key":17},"CVE-2022-22976",{"_key":19},"CVE-2022-40149",{"_key":21},"CVE-2022-40150",{"_key":23},"CVE-2022-41966",{"_key":25},"CVE-2022-42003",{"_key":27},"CVE-2022-42004",{"_key":29},"CVE-2023-1370",{"_key":31},"CVE-2023-1436",{"_key":33},"CVE-2023-20860",{"_key":35},"CVE-2023-26464",{"_key":37},"CVE-2023-27898",{"_key":39},"CVE-2023-27899",{"_key":41},"CVE-2023-27903",{"_key":43},"CVE-2023-27904",{"_key":45},"CVE-2023-32977",{"_key":47},"CVE-2023-32981",[],[],[],"2024-09-30T16:35:09Z","2026-05-17T10:01:45Z",{"cisa_kev":54,"cisa_ransomware":54,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[56,62,67,72,76,80,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,156,160,164,168,172,176,180,184,188,192,196,200,204,208,212,216,220,224,228,232,236,240,244,248,252,256,260,264,268,272,276,280,284,288,292,296,300,304,308,312,316,320,324,328,332,336,340,344,348,352,356,360,364,368,372,376,380,384,388,392,396,400],{"url":57,"sources":58,"tags":60},"https://access.redhat.com/errata/RHSA-2023:3663",[59],"osv_red_hat",[61],"Advisory",{"url":63,"sources":64,"tags":65},"https://access.redhat.com/security/updates/classification/#important",[59],[66],"ARTICLE",{"url":68,"sources":69,"tags":70},"https://bugzilla.redhat.com/show_bug.cgi?id=2087214",[59],[71],"REPORT",{"url":73,"sources":74,"tags":75},"https://bugzilla.redhat.com/show_bug.cgi?id=2116952",[59],[71],{"url":77,"sources":78,"tags":79},"https://bugzilla.redhat.com/show_bug.cgi?id=2135244",[59],[71],{"url":81,"sources":82,"tags":83},"https://bugzilla.redhat.com/show_bug.cgi?id=2135247",[59],[71],{"url":85,"sources":86,"tags":87},"https://bugzilla.redhat.com/show_bug.cgi?id=2135770",[59],[71],{"url":89,"sources":90,"tags":91},"https://bugzilla.redhat.com/show_bug.cgi?id=2135771",[59],[71],{"url":93,"sources":94,"tags":95},"https://bugzilla.redhat.com/show_bug.cgi?id=2170431",[59],[71],{"url":97,"sources":98,"tags":99},"https://bugzilla.redhat.com/show_bug.cgi?id=2177626",[59],[71],{"url":101,"sources":102,"tags":103},"https://bugzilla.redhat.com/show_bug.cgi?id=2177629",[59],[71],{"url":105,"sources":106,"tags":107},"https://bugzilla.redhat.com/show_bug.cgi?id=2177632",[59],[71],{"url":109,"sources":110,"tags":111},"https://bugzilla.redhat.com/show_bug.cgi?id=2177634",[59],[71],{"url":113,"sources":114,"tags":115},"https://bugzilla.redhat.com/show_bug.cgi?id=2180528",[59],[71],{"url":117,"sources":118,"tags":119},"https://bugzilla.redhat.com/show_bug.cgi?id=2182788",[59],[71],{"url":121,"sources":122,"tags":123},"https://bugzilla.redhat.com/show_bug.cgi?id=2182864",[59],[71],{"url":125,"sources":126,"tags":127},"https://bugzilla.redhat.com/show_bug.cgi?id=2188542",[59],[71],{"url":129,"sources":130,"tags":131},"https://bugzilla.redhat.com/show_bug.cgi?id=2207830",[59],[71],{"url":133,"sources":134,"tags":135},"https://bugzilla.redhat.com/show_bug.cgi?id=2207835",[59],[71],{"url":137,"sources":138,"tags":139},"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3663.json",[59],[61],{"url":141,"sources":142,"tags":143},"https://access.redhat.com/security/cve/CVE-2022-2048",[59],[71],{"url":145,"sources":146,"tags":147},"https://www.cve.org/CVERecord?id=CVE-2022-2048",[59],[61],{"url":149,"sources":150,"tags":151},"https://nvd.nist.gov/vuln/detail/CVE-2022-2048",[59],[61],{"url":153,"sources":154,"tags":155},"https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j",[59],[66],{"url":157,"sources":158,"tags":159},"https://access.redhat.com/security/cve/CVE-2022-22976",[59],[71],{"url":161,"sources":162,"tags":163},"https://www.cve.org/CVERecord?id=CVE-2022-22976",[59],[61],{"url":165,"sources":166,"tags":167},"https://nvd.nist.gov/vuln/detail/CVE-2022-22976",[59],[61],{"url":169,"sources":170,"tags":171},"https://tanzu.vmware.com/security/cve-2022-22976",[59],[66],{"url":173,"sources":174,"tags":175},"https://access.redhat.com/security/cve/CVE-2022-40149",[59],[71],{"url":177,"sources":178,"tags":179},"https://www.cve.org/CVERecord?id=CVE-2022-40149",[59],[61],{"url":181,"sources":182,"tags":183},"https://nvd.nist.gov/vuln/detail/CVE-2022-40149",[59],[61],{"url":185,"sources":186,"tags":187},"https://github.com/jettison-json/jettison/releases/tag/jettison-1.5.1",[59],[66],{"url":189,"sources":190,"tags":191},"https://access.redhat.com/security/cve/CVE-2022-40150",[59],[71],{"url":193,"sources":194,"tags":195},"https://www.cve.org/CVERecord?id=CVE-2022-40150",[59],[61],{"url":197,"sources":198,"tags":199},"https://nvd.nist.gov/vuln/detail/CVE-2022-40150",[59],[61],{"url":201,"sources":202,"tags":203},"https://access.redhat.com/security/cve/CVE-2022-41966",[59],[71],{"url":205,"sources":206,"tags":207},"https://www.cve.org/CVERecord?id=CVE-2022-41966",[59],[61],{"url":209,"sources":210,"tags":211},"https://nvd.nist.gov/vuln/detail/CVE-2022-41966",[59],[61],{"url":213,"sources":214,"tags":215},"https://github.com/x-stream/xstream/security/advisories/GHSA-j563-grx4-pjpv",[59],[66],{"url":217,"sources":218,"tags":219},"https://access.redhat.com/security/cve/CVE-2022-42003",[59],[71],{"url":221,"sources":222,"tags":223},"https://www.cve.org/CVERecord?id=CVE-2022-42003",[59],[61],{"url":225,"sources":226,"tags":227},"https://nvd.nist.gov/vuln/detail/CVE-2022-42003",[59],[61],{"url":229,"sources":230,"tags":231},"https://access.redhat.com/security/cve/CVE-2022-42004",[59],[71],{"url":233,"sources":234,"tags":235},"https://www.cve.org/CVERecord?id=CVE-2022-42004",[59],[61],{"url":237,"sources":238,"tags":239},"https://nvd.nist.gov/vuln/detail/CVE-2022-42004",[59],[61],{"url":241,"sources":242,"tags":243},"https://access.redhat.com/security/cve/CVE-2023-1370",[59],[71],{"url":245,"sources":246,"tags":247},"https://www.cve.org/CVERecord?id=CVE-2023-1370",[59],[61],{"url":249,"sources":250,"tags":251},"https://nvd.nist.gov/vuln/detail/CVE-2023-1370",[59],[61],{"url":253,"sources":254,"tags":255},"https://github.com/advisories/GHSA-493p-pfq6-5258",[59],[61],{"url":257,"sources":258,"tags":259},"https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/",[59],[66],{"url":261,"sources":262,"tags":263},"https://access.redhat.com/security/cve/CVE-2023-1436",[59],[71],{"url":265,"sources":266,"tags":267},"https://www.cve.org/CVERecord?id=CVE-2023-1436",[59],[61],{"url":269,"sources":270,"tags":271},"https://nvd.nist.gov/vuln/detail/CVE-2023-1436",[59],[61],{"url":273,"sources":274,"tags":275},"https://research.jfrog.com/vulnerabilities/jettison-json-array-dos-xray-427911/",[59],[66],{"url":277,"sources":278,"tags":279},"https://access.redhat.com/security/cve/CVE-2023-20860",[59],[71],{"url":281,"sources":282,"tags":283},"https://www.cve.org/CVERecord?id=CVE-2023-20860",[59],[61],{"url":285,"sources":286,"tags":287},"https://nvd.nist.gov/vuln/detail/CVE-2023-20860",[59],[61],{"url":289,"sources":290,"tags":291},"https://spring.io/blog/2023/03/20/spring-framework-6-0-7-and-5-3-26-fix-cve-2023-20860-and-cve-2023-20861",[59],[66],{"url":293,"sources":294,"tags":295},"https://access.redhat.com/security/cve/CVE-2023-26464",[59],[71],{"url":297,"sources":298,"tags":299},"https://www.cve.org/CVERecord?id=CVE-2023-26464",[59],[61],{"url":301,"sources":302,"tags":303},"https://nvd.nist.gov/vuln/detail/CVE-2023-26464",[59],[61],{"url":305,"sources":306,"tags":307},"https://www.ibm.com/support/pages/security-bulletin-vulnerability-log4j-1216jar-affect-ibm-operations-analytics-log-analysis-cve-2023-26464",[59],[66],{"url":309,"sources":310,"tags":311},"https://access.redhat.com/security/cve/CVE-2023-27898",[59],[71],{"url":313,"sources":314,"tags":315},"https://www.cve.org/CVERecord?id=CVE-2023-27898",[59],[61],{"url":317,"sources":318,"tags":319},"https://nvd.nist.gov/vuln/detail/CVE-2023-27898",[59],[61],{"url":321,"sources":322,"tags":323},"https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3037",[59],[66],{"url":325,"sources":326,"tags":327},"https://access.redhat.com/security/cve/CVE-2023-27899",[59],[71],{"url":329,"sources":330,"tags":331},"https://www.cve.org/CVERecord?id=CVE-2023-27899",[59],[61],{"url":333,"sources":334,"tags":335},"https://nvd.nist.gov/vuln/detail/CVE-2023-27899",[59],[61],{"url":337,"sources":338,"tags":339},"https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2823",[59],[66],{"url":341,"sources":342,"tags":343},"https://access.redhat.com/security/cve/CVE-2023-27903",[59],[71],{"url":345,"sources":346,"tags":347},"https://www.cve.org/CVERecord?id=CVE-2023-27903",[59],[61],{"url":349,"sources":350,"tags":351},"https://nvd.nist.gov/vuln/detail/CVE-2023-27903",[59],[61],{"url":353,"sources":354,"tags":355},"https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3058",[59],[66],{"url":357,"sources":358,"tags":359},"https://access.redhat.com/security/cve/CVE-2023-27904",[59],[71],{"url":361,"sources":362,"tags":363},"https://www.cve.org/CVERecord?id=CVE-2023-27904",[59],[61],{"url":365,"sources":366,"tags":367},"https://nvd.nist.gov/vuln/detail/CVE-2023-27904",[59],[61],{"url":369,"sources":370,"tags":371},"https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2120",[59],[66],{"url":373,"sources":374,"tags":375},"https://access.redhat.com/security/cve/CVE-2023-32977",[59],[71],{"url":377,"sources":378,"tags":379},"https://www.cve.org/CVERecord?id=CVE-2023-32977",[59],[61],{"url":381,"sources":382,"tags":383},"https://nvd.nist.gov/vuln/detail/CVE-2023-32977",[59],[61],{"url":385,"sources":386,"tags":387},"https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3042",[59],[66],{"url":389,"sources":390,"tags":391},"https://access.redhat.com/security/cve/CVE-2023-32981",[59],[71],{"url":393,"sources":394,"tags":395},"https://www.cve.org/CVERecord?id=CVE-2023-32981",[59],[61],{"url":397,"sources":398,"tags":399},"https://nvd.nist.gov/vuln/detail/CVE-2023-32981",[59],[61],{"url":401,"sources":402,"tags":403},"https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-2196",[59],[66],[],[],[407],{"source":59,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":408,"cvss_v4_0":9},{"baseScore":409,"baseSeverity":9,"vectorString":410,"impactScore":411,"exploitabilityScore":412},8.8,"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",9.8,7.2,[414,426],{"ecosystem":415,"name":416,"vendor":417,"product":416,"cpe_part":9,"purl_type":418,"purl_namespace":417,"purl_name":416,"source":9,"versions":419},"Red Hat","jenkins","redhat","rpm",[420],{"version":421,"is_range":422,"range_type":423,"version_start":9,"version_start_type":9,"version_end":424,"version_end_type":425,"fixed_in":9},"lt0:2_401_1_1686831596_3_el8",true,"ecosystem","0:2.401.1.1686831596-3.el8","excluding",{"ecosystem":415,"name":427,"vendor":417,"product":427,"cpe_part":9,"purl_type":418,"purl_namespace":417,"purl_name":427,"source":9,"versions":428},"jenkins-2-plugins",[429],{"version":430,"is_range":422,"range_type":423,"version_start":9,"version_start_type":9,"version_end":431,"version_end_type":425,"fixed_in":9},"lt0:4_11_1686831822_1_el8","0:4.11.1686831822-1.el8"]