CVE-2018-1000145

EPSS 0.10% · P26 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-1000145

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An exposure of sensitive information vulnerability exists in Jenkins Perforce Plugin version 1.3.36 and older in PerforcePasswordEncryptor.java that allows attackers with local file system access to obtain encrypted Perforce passwords and decrypt them.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

CloudBees Jenkins Perforce Plugin 信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

CloudBees Jenkins（前称Hudson Labs）是美国CloudBees公司的一套基于Java开发的持续集成工具，该工具主要用于监控秩序重复的工作。Perforce Plugin是使用在其中的一个将Perforce SCM存储库集成到Jenkins中的插件。 CloudBees Jenkins Perforce Plugin 1.3.36及之前版本中PerforcePasswordEncryptor.java文件存在信息泄露漏洞。远程攻击者可利用该漏洞获取加密的Perforce密码并对其进

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-1000145

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-1000145

Please Login to view more intelligence information

https://jenkins.io/security/advisory/2018-03-26/#SECURITY-373x_refsource_CONFIRM
https://nvd.nist.gov/vuln/detail/CVE-2018-1000145

Same Patch Batch · n/a · 2018-04-05 · 21 CVEs total

CVE-2018-1000146		CloudBees Jenkins Liquibase Runner Plugin 权限许可与访问控制漏洞
CVE-2018-9309		ZZCMS SQL注入漏洞
CVE-2018-1000154		Zammad 跨站脚本漏洞
CVE-2018-1000153		CloudBees Jenkins vSphere Plugin 跨站请求伪造漏洞
CVE-2018-1000152		CloudBees Jenkins vSphere Plugin 授权问题漏洞
CVE-2018-1000151		CloudBees Jenkins vSphere Plugin 安全漏洞
CVE-2018-1000150		CloudBees Jenkins Reverse Proxy Auth Plugin 信息泄露漏洞
CVE-2018-1000149		CloudBees Jenkins Ansible Plugin 安全漏洞
CVE-2018-1000148		CloudBees Jenkins Copy To Slave Plugin 信息泄露漏洞
CVE-2018-1000147		Jenkins Perforce Plugin 安全漏洞
CVE-2018-9328		PHP Scripts Mall Redbus Clone Script 跨站脚本漏洞
CVE-2018-1000144		CloudBees Jenkins Cucumber Living Documentation Plugin 跨站脚本漏洞
CVE-2018-1000143		CloudBees Jenkins GitHub Pull Request Builder Plugin 信息泄露漏洞
CVE-2018-1000142		CloudBees Jenkins GitHub Pull Request Builder Plugin 信息泄露漏洞
CVE-2018-9244		GitLab Community和Enterprise Editions 跨站脚本漏洞
CVE-2018-9243		GitLab Community和Enterprise Editions 跨站脚本漏洞
CVE-2018-7035		Gleez CMS 跨站脚本漏洞
CVE-2018-9233		Sophos Endpoint Protection 加密问题漏洞
CVE-2018-4863		Sophos Endpoint Protection 安全特征问题漏洞
CVE-2014-3413		Juniper Junos Space MySQL服务器安全漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-1000145

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-1000145

I. Basic Information for CVE-2018-1000145

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-1000145

III. Intelligence Information for CVE-2018-1000145

Same Patch Batch · n/a · 2018-04-05 · 21 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-1000145

Leave a comment