Lucene search

K

Debian Package Builder Security Vulnerabilities

cve
cve

CVE-2022-23118

Jenkins Debian Package Builder Plugin 1.6.11 and earlier implements functionality that allows agents to invoke command-line git at an attacker-specified path on the controller, allowing attackers able to control agent processes to invoke arbitrary OS commands on the...

8.8CVSS

8.7AI Score

0.001EPSS

2022-01-12 08:15 PM
88
cve
cve

CVE-2020-28169

The td-agent-builder plugin before 2020-12-18 for Fluentd allows attackers to gain privileges because the bin directory is writable by a user account, but a file in bin is executed as NT...

7CVSS

7AI Score

0.002EPSS

2020-12-24 03:15 PM
92
6
cve
cve

CVE-2020-2125

Jenkins Debian Package Builder Plugin 1.6.11 and earlier stores a GPG passphrase unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file...

4.3CVSS

4.5AI Score

0.001EPSS

2020-02-12 03:15 PM
31