9215 matches found
CVE-2025-32755
In jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SSH...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
Exploit for Cross-site Scripting in Ourphp
cve-2023-30212 PoC for CVE-2023-30212 using Docker CVE-2023-...
OPENSUSE-SU-2025:14985-1 docker-27.5.1_ce-15.1 on GA media
These are all security issues fixed in the docker-27.5.1ce-15.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-22871 vulnerabilities
Vulnerabilities for packages: kapp-controller, dex, aws-application-networking-k8s, s5cmd, http-echo, cri-tools, dbmate, amass, metrics-server, promxy, tailscale, kyverno-notation-aws, cert-exporter, kafkaexporter, regclient, temporal-server, spegel, incert, kubescape, octo-sts, sqlexporter,...
GHSA-G9PC-8G42-G6VQ vulnerabilities
Vulnerabilities for packages: kapp-controller, dex, aws-application-networking-k8s, s5cmd, http-echo, cri-tools, dbmate, amass, metrics-server, promxy, tailscale, kyverno-notation-aws, cert-exporter, kafkaexporter, regclient, temporal-server, spegel, incert, kubescape, octo-sts, sqlexporter,...
GHSA-G9PC-8G42-G6VQ vulnerabilities
Vulnerabilities for packages: prometheus-mysqld-exporter-fips, oras, litefs, pombump, secrets-store-csi-driver-provider-gcp-fips, karma, render-template-fips, kaf, gptscript, prometheus-postgres-exporter, falco-exporter-fips, flux-notification-controller, helm-operator, neuvector-dbgen, hey,...
CVE-2025-22871 vulnerabilities
Vulnerabilities for packages: prometheus-mysqld-exporter-fips, oras, litefs, pombump, secrets-store-csi-driver-provider-gcp-fips, karma, render-template-fips, kaf, gptscript, prometheus-postgres-exporter, falco-exporter-fips, flux-notification-controller, helm-operator, neuvector-dbgen, hey,...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
CVE-2025-32755
In jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SSH...
CVE-2025-32755
CVE-2025-32755 affects Jenkins’ ssh-slave Docker images built on Debian. In these images, SSH host keys are generated at image creation, causing all containers derived from the same image version to share identical host keys. This enables an attacker who can position themselves in the network pat...
CVE-2025-32755
In jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SSH...
CVE-2025-32754
CVE-2025-32754 affects the jenkins/ssh-agent Docker images (6.11.1 and earlier). The root cause is that SSH host keys are generated on image creation, causing all containers built from the same image version to share the same host keys. This enables an attacker who can position themselves in the ...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
Mageia: Security Advisory (MGASA-2025-0130)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2025-15974 · Unknown +1 · Jenkins/Ssh-Slave +1
Name of the Vulnerable Software and Affected Versions: Jenkins/ssh-slave Docker images based on Debian affected versions not specified Description: The issue arises from SSH host keys being generated on image creation for Jenkins/ssh-slave Docker images based on Debian. This results in all...
OPENSUSE-SU-2025:14980-1 docker-stable-24.0.9_ce-9.1 on GA media
These are all security issues fixed in the docker-stable-24.0.9ce-9.1 package on the GA media of openSUSE Tumbleweed...