Lucene search
K

102 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/12/05 6:9 a.m.38 views

Security Bulletin: Rational Test Automation Server is vulnerable to incorrect authorization vulnerability due to Keycloak (CVE-2021-4133)

Summary Keycloak vulnerability of incorrect authorization impacts Rational Test Automation Server. Vulnerability Details CVEID:CVE-2021-4133 DESCRIPTION: Keycloak could allow a remote authenticated attacker to bypass security restrictions, caused by improper authorization validation by the...

8.8CVSS8.4AI score0.01347EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/05 6:4 a.m.42 views

Security Bulletin: Rational Test Automation Server is vulnerable to malicious code execution due to Keycloak (CVE-2021-20222)

Summary Keycloak vulnerability that allows malicious code to be executed impacts Rational Test Automation Server. Vulnerability Details CVEID:CVE-2021-20222 DESCRIPTION: Keycloak is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the referrer URL in the...

7.5CVSS7.5AI score0.0119EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/05 5:54 a.m.53 views

Security Bulletin: Rational Test Automation Server is vulnerable to Allocation of resources without limits vulnerability due to Keycloak (CVE-2021-3637)

Summary Vulnerability related to allocation of resources without limits associated with the Keycloak versions before 14.0.0 impacts Rational Test Automation Server. Vulnerability Details CVEID:CVE-2021-3637 DESCRIPTION: Keycloak is vulnerable to a denial of service, caused by a flaw in the...

7.5CVSS7.3AI score0.01129EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/07/11 12:0 a.m.32 views

Jenkins Google Login authorization issue vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. jenkins Plugin is an application. jenkins Google Login has an authorizati...

6.5CVSS1.8AI score0.00641EPSS
Exploits0References1
CNVD
CNVD
added 2022/07/04 12:0 a.m.25 views

Jenkins Request Rename Or Delete Plugin跨站请求伪造漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site request forgery vulnerability...

4.3CVSS2.5AI score0.00454EPSS
Exploits0References1
CNVD
CNVD
added 2022/07/04 12:0 a.m.17 views

Jenkins eXtreme Feedback Panel Plugin跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exist...

5.4CVSS0.8AI score0.00668EPSS
Exploits0References1
CNVD
CNVD
added 2022/07/04 12:0 a.m.32 views

Jenkins Matrix Reloaded Plugin跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exist...

5.4CVSS1.3AI score0.00567EPSS
Exploits0References1
CNVD
CNVD
added 2022/07/04 12:0 a.m.32 views

Jenkins Validating Email Parameter Plugin跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exist...

3.5CVSS1.2AI score0.00602EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/07/04 12:0 a.m.29 views

Jenkins Plugin GitLab Cross-Site Scripting Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exis...

3.5CVSS1AI score0.7236EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/06/27 12:0 a.m.27 views

Jenkins Cross-Site Scripting Vulnerability (CNVD-2022-65922)

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins suffers from a cross-site scripting vulnerability that stems from the title attribute and alt attribute not being...

4.3CVSS2.2AI score0.01351EPSS
Exploits0Affected Software2
CNVD
CNVD
added 2022/06/27 12:0 a.m.27 views

Jenkins Access Control Error Vulnerability (CNVD-2022-65925)

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins versions 2.335 through 2.355 contain an access control error vulnerability that stems from the lack of an effectiv...

5CVSS2.9AI score0.01288EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/06/27 12:0 a.m.48 views

Jenkins user enumeration vulnerability

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins suffers from a user enumeration vulnerability that stems from an observable time difference between a valid user a...

5CVSS1AI score0.01221EPSS
Exploits0Affected Software2
CNVD
CNVD
added 2022/06/27 12:0 a.m.31 views

Jenkins Cross-Site Scripting Vulnerability (CNVD-2022-65927)

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins versions 2.340 through 2.355 contain a cross-site scripting vulnerability that stems from the tooling of the build...

4.3CVSS1.3AI score0.01351EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/06/27 12:0 a.m.22 views

Jenkins Cross-Site Scripting Vulnerability (CNVD-2022-65924)

Jenkins is an application of the Jenkins open source. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins suffers from a cross-site scripting vulnerability that stems from the fact that the help icon does not...

4.3CVSS1.8AI score0.01351EPSS
Exploits0Affected Software2
CNVD
CNVD
added 2022/06/24 12:0 a.m.26 views

Jenkins Pipeline Plugin Arbitrary File Writing Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application software.Jenkins Pipeline Plugin...

7.5CVSS1.5AI score0.01468EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/24 12:0 a.m.20 views

Jenkins Date Parameter Plugin Cross-Site Scripting Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exist...

3.5CVSS1.4AI score0.00602EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/06/24 12:0 a.m.155 views

Jenkins Embeddable Build Status Plugin路径遍历漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.Jenkins Embeddable Build Status Plugin 2.0...

7.5CVSS2.6AI score0.01559EPSS
Exploits0References1
CNVD
CNVD
added 2022/05/19 12:0 a.m.15 views

Jenkins GitLab Plugin Permissions and Access Control Issues Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.The Jenkins GitLab Plugin 1.5.31 and earli...

6.5CVSS1.9AI score0.008EPSS
Exploits0References1
CNVD
CNVD
added 2022/05/19 12:0 a.m.19 views

Jenkins Pipeline SCM API for Blue Ocean Plugin信息泄露漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. Jenkins is an open source automation server that provides hundreds of plugins to support building, deploying, and automating any project. The vulnerability can be exploited to access arbitrary user...

6.5CVSS1.7AI score0.00864EPSS
Exploits0References1
CNVD
CNVD
added 2022/05/19 12:0 a.m.110 views

Jenkins Storable Configs Plugin XML External Entity Injection Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.An XML external entity injection...

8.8CVSS2.3AI score0.01123EPSS
Exploits0References1
Rows per page
Query Builder