{"url":"http://public2.vulnerablecode.io/api/packages/20881?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4","type":"maven","namespace":"org.jenkins-ci.main","name":"jenkins-core","version":"2.89.4","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.95","latest_non_vulnerable_version":"2.555","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30488?format=json","vulnerability_id":"VCID-75y1-agbn-nqce","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6356.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6356.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6356","reference_id":"","reference_type":"","scores":[{"value":"0.31601","scoring_system":"epss","scoring_elements":"0.96907","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6356"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/9de62915807deab61d6e780eed660428f9889b51","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/9de62915807deab61d6e780eed660428f9889b51"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/eb03a42078f29dbed3742b8740c95e02890e4545","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/eb03a42078f29dbed3742b8740c95e02890e4545"},{"reference_url":"https://jenkins.io/security/advisory/2018-02-14","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://jenkins.io/security/advisory/2018-02-14"},{"reference_url":"https://jenkins.io/security/advisory/2018-02-14/","reference_id":"","reference_type":"","scores":[],"url":"https://jenkins.io/security/advisory/2018-02-14/"},{"reference_url":"https://web.archive.org/web/20200227130607/http://www.securityfocus.com/bid/103037","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://web.archive.org/web/20200227130607/http://www.securityfocus.com/bid/103037"},{"reference_url":"http://www.openwall.com/lists/oss-security/2018/02/14/1","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2018/02/14/1"},{"reference_url":"http://www.securityfocus.com/bid/103037","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/103037"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545904","reference_id":"1545904","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545904"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-6356","reference_id":"CVE-2018-6356","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-6356"},{"reference_url":"https://github.com/advisories/GHSA-5p59-v5wm-77v4","reference_id":"GHSA-5p59-v5wm-77v4","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5p59-v5wm-77v4"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/20891?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.107","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.107"}],"aliases":["CVE-2018-6356","GHSA-5p59-v5wm-77v4"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-75y1-agbn-nqce"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30488?format=json","vulnerability_id":"VCID-75y1-agbn-nqce","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6356.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6356.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6356","reference_id":"","reference_type":"","scores":[{"value":"0.31601","scoring_system":"epss","scoring_elements":"0.96907","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6356"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/9de62915807deab61d6e780eed660428f9889b51","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/9de62915807deab61d6e780eed660428f9889b51"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/eb03a42078f29dbed3742b8740c95e02890e4545","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/eb03a42078f29dbed3742b8740c95e02890e4545"},{"reference_url":"https://jenkins.io/security/advisory/2018-02-14","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://jenkins.io/security/advisory/2018-02-14"},{"reference_url":"https://jenkins.io/security/advisory/2018-02-14/","reference_id":"","reference_type":"","scores":[],"url":"https://jenkins.io/security/advisory/2018-02-14/"},{"reference_url":"https://web.archive.org/web/20200227130607/http://www.securityfocus.com/bid/103037","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://web.archive.org/web/20200227130607/http://www.securityfocus.com/bid/103037"},{"reference_url":"http://www.openwall.com/lists/oss-security/2018/02/14/1","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2018/02/14/1"},{"reference_url":"http://www.securityfocus.com/bid/103037","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/103037"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545904","reference_id":"1545904","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545904"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-6356","reference_id":"CVE-2018-6356","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-6356"},{"reference_url":"https://github.com/advisories/GHSA-5p59-v5wm-77v4","reference_id":"GHSA-5p59-v5wm-77v4","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5p59-v5wm-77v4"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/20881?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-75y1-agbn-nqce"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4"},{"url":"http://public2.vulnerablecode.io/api/packages/20891?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.107","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.107"}],"aliases":["CVE-2018-6356","GHSA-5p59-v5wm-77v4"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-75y1-agbn-nqce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30511?format=json","vulnerability_id":"VCID-8jfc-kjbd-cka2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000068.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000068.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000068","reference_id":"","reference_type":"","scores":[{"value":"0.00309","scoring_system":"epss","scoring_elements":"0.54447","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000068"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/8830d68f5fe21f344be3496984bc4470bfcd0564","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/8830d68f5fe21f344be3496984bc4470bfcd0564"},{"reference_url":"https://jenkins.io/security/advisory/2018-02-14/#SECURITY-717","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://jenkins.io/security/advisory/2018-02-14/#SECURITY-717"},{"reference_url":"http://www.securityfocus.com/bid/103101","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securityfocus.com/bid/103101"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545910","reference_id":"1545910","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545910"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1000068","reference_id":"CVE-2018-1000068","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1000068"},{"reference_url":"https://github.com/advisories/GHSA-x6jw-2f23-mc5j","reference_id":"GHSA-x6jw-2f23-mc5j","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-x6jw-2f23-mc5j"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/20881?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-75y1-agbn-nqce"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4"},{"url":"http://public2.vulnerablecode.io/api/packages/20891?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.107","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.107"}],"aliases":["CVE-2018-1000068","GHSA-x6jw-2f23-mc5j"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8jfc-kjbd-cka2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30437?format=json","vulnerability_id":"VCID-ankr-qkb3-u7eu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000067.json","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000067.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000067","reference_id":"","reference_type":"","scores":[{"value":"0.00353","scoring_system":"epss","scoring_elements":"0.58083","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000067"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/2d16b459205730d85e51499c2457109b234ca9d9","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/2d16b459205730d85e51499c2457109b234ca9d9"},{"reference_url":"https://jenkins.io/security/advisory/2018-02-14/#SECURITY-506","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://jenkins.io/security/advisory/2018-02-14/#SECURITY-506"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545899","reference_id":"1545899","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545899"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1000067","reference_id":"CVE-2018-1000067","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1000067"},{"reference_url":"https://github.com/advisories/GHSA-6mv9-hcx5-7mhh","reference_id":"GHSA-6mv9-hcx5-7mhh","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6mv9-hcx5-7mhh"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/20881?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-75y1-agbn-nqce"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4"},{"url":"http://public2.vulnerablecode.io/api/packages/20891?format=json","purl":"pkg:maven/org.jenkins-ci.main/jenkins-core@2.107","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.107"}],"aliases":["CVE-2018-1000067","GHSA-6mv9-hcx5-7mhh"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ankr-qkb3-u7eu"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.89.4"}