QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2012-0785

Back to search

CVE-2012-0785

Published: Feb 24, 2020

Modified: Aug 6, 2024

PUBLISHED

Description

Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "the Hash DoS attack."

VendorProductVersions

Jenkins project

Jenkins

affected
before 1.447

Jenkins project

Jenkins LTS

affected
before 1.424.2

Jenkins project

Jenkins Enterprise by CloudBees

affected
1.424.x before 1.424.2.1
affected
1.400.x before 1.400.0.11

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now