5 matches found
Jenkins Plugin 安全漏洞
Jenkins Plugin is an open source application for Jenkins. The Jenkins Plugin Conjur Secrets Plugin 1.0.9 previously contained a security vulnerability that allowed an attacker to exploit the vulnerability to take control of an agent process to retrieve the functionality of all username-password...
Jenkins Plugin 安全漏洞
Jenkins Plugin is an open source application for Jenkins. Jenkins Plugin Conjur Secrets Plugin 1.0.9 and earlier versions have a security vulnerability that allows an attacker to exploit the vulnerability to take control of an agent process to decrypt the functionality of secrets stored in Jenkin...
VulnCheck KEV: CVE-2020-6207
SAP Solution Manager User Experience Monitoring contains a missing authentication for critical function vulnerability which results in complete compromise of all SMDAgents connected to the Solution Manager...
jenkins-2-plugins/mercurial: XML parser is not preventing XML external entity (XXE) attacks
A flaw was found in the mercurial plugin in Jenkins. The XML changelog parser is not configured to prevent an XML external entity XXE attack allowing an attacker the ability to control an agent process to have Jenkins parse a crafted changelog file that uses external entities for extraction of...
jenkins-2-plugins/subversion: XML parser is not preventing XML external entity (XXE) attacks
A flaw was found in the subversion Jenkins plugin. The XML parser is not properly configured to prevent XML external entity XXE attacks allowing an attacker the ability to control an agent process and have Jenkins parse a crafted changelog file that uses external entities for extraction of secret...