Lucene search
K

102 matches found

CNVD
CNVD
added 2022/02/17 12:0 a.m.15 views

Jenkins autonomiq Plugin Access Control Error Vulnerability

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project. an access control error vulnerability in Jenkins autonomiq Plugin 1.15 and earlier versions, which stems from not performi...

4.3CVSS2AI score0.00541EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/17 12:0 a.m.22 views

Jenkins Snow Commander Plugin Access Control Error Vulnerability

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Snow Commander Plugin 2.0 and earlier versions are vulnerable to an access control error that stems from not...

6.5CVSS2.5AI score0.00898EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/17 12:0 a.m.33 views

Jenkins Pipeline Shared Groovy Libraries Plugin Sandbox Bypass Vulnerability

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Pipeline Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1 and earlier versions have a sandbox bypass vulnerability...

8.8CVSS1.2AI score0.01541EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/17 12:0 a.m.24 views

Jenkins SCP publisher Plugin cross-site request forgery vulnerability

Jenkins is a Jenkins open source application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins SCP publisher Plugin 1.8 and earlier versions are vulnerable to cross-site request forgery, which stems from a WEB...

8.8CVSS1.2AI score0.00519EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/17 12:0 a.m.29 views

Jenkins HashiCorp Vault Plugin Arbitrary File Read Vulnerability

Jenkins is a Jenkins open source application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. Jenkins HashiCorp Vault Plugin 336.v182c0fbaaeb7 and earlier versions contain an arbitrary file read vulnerability that...

6.5CVSS0.9AI score0.00796EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/21 12:0 a.m.21 views

Jenkins Permissions and Access Control Issues Vulnerability

Jenkins is a Jenkins open source application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins SSH Agent Plugin 1.23 previously had a security vulnerability that stemmed from a lack of privilege checking, whi...

4.3CVSS2.3AI score0.00748EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/21 12:0 a.m.17 views

Jenkins batch task Plugin cross-site request forgery vulnerability

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins batch task Plugin 1.19 and earlier versions are vulnerable to cross-site request forgery. An attacker with...

5.8CVSS2.3AI score0.00579EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/17 12:0 a.m.39 views

Jenkins Cross-Site Request Forgery Vulnerability (CNVD-2022-08036)

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . Jenkins has a cross-site request forgery vulnerability that stems from the WEB application not adequately verifying tha...

4.3CVSS6AI score0.01779EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/16 12:0 a.m.18 views

Jenkins Input Validation Error Vulnerability (CNVD-2022-05101)

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.The Jenkins Credentials Binding Plugin is vulnerable to an input validation error that stems from the plugin's failure to...

4.3CVSS1.7AI score0.00852EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/16 12:0 a.m.29 views

Jenkins Mailer Plugin Cross-Site Request Forgery Vulnerability

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . A cross-site request forgery vulnerability exists in Jenkins Mailer that stems from the software's lack of validation f...

4.3CVSS4.6AI score0.00957EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/16 12:0 a.m.25 views

Jenkins Bitbucket Branch Source Plugin Cross-Site Request Forgery Vulnerability

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . The Jenkins Bitbucket Branch Source Plugin suffers from a cross-site request forgery vulnerability that stems from a WE...

7.1CVSS7AI score0.00655EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/15 10:42 a.m.109 views

Security Bulletin: Rational Test Automation Server is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44228)

Summary Apache Log4j vulnerability associated with the Rational Performance Tester Apache JMeter™ Test Extension impacts Rational Test Automation Server. Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrary code on the system,...

10CVSS1.5AI score0.99999EPSS
Exploits351Affected Software1
CNVD
CNVD
added 2021/11/17 12:0 a.m.20 views

Jenkins code issue vulnerability (CNVD-2021-93372)

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project. a code issue vulnerability exists in Jenkins Plugin, which stems from the pom2config plugin version 1.2 and earlier not...

6.5CVSS3AI score0.02366EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/08 12:0 a.m.5 views

Jenkins Access Control Error Vulnerability (CNVD-2021-88718)

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . Jenkins has an access control error vulnerability that stems from FilePathunzip and FilePathuntar not being subject to...

9.1CVSS6.5AI score0.01416EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/02 12:0 a.m.6 views

Jenkins Access Control Error Vulnerability (CNVD-2021-46869)

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . Jenkins suffers from an Access Control Error vulnerability that stems from Jenkins allowing a user to cancel a project...

4.3CVSS6.4AI score0.01982EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/30 12:0 a.m.4 views

Jenkins 输入验证错误漏洞

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . An input validation error vulnerability exists in Jenkins CAS Plugin 1.6.0 and earlier versions, which stems from Jenki...

6.1CVSS5.7AI score0.01584EPSS
Exploits0References5
CNVD
CNVD
added 2021/06/16 12:0 a.m.8 views

Jenkins cross-site scripting vulnerability (CNVD-2021-49067)

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . A cross-site scripting vulnerability exists in Jenkins Kiuwan Plugin, which stems from a cross-site scripting XSS...

6.1CVSS5.5AI score0.01216EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/28 12:0 a.m.5 views

CODESYS Group CODESYS Automation Server Cross-Site Request Forgery Vulnerability

CODESYS Group CODESYS Automation Server is an application from the German company CODESYS Group. It is used to manage control tasks. A cross-site request forgery vulnerability exists in CODESYS Group CODESYS Automation Server versions prior to 1.16.0. No detailed vulnerability details are current...

8.8CVSS6.7AI score0.00531EPSS
Exploits0References1
OSV
OSV
added 2021/05/03 2:15 p.m.4 views

CVE-2021-29238

CODESYS Automation Server before 1.16.0 allows cross-site request forgery CSRF...

8.8CVSS5.7AI score0.00531EPSS
Exploits0References3
NVD
NVD
added 2021/05/03 2:15 p.m.13 views

CVE-2021-29238

CODESYS Automation Server before 1.16.0 allows cross-site request forgery CSRF...

8.8CVSS0.00531EPSS
Exploits0References3
Rows per page
Query Builder