49 matches found
CVE-2018-1999035
A man in the middle vulnerability exists in Jenkins Inedo BuildMaster Plugin 1.3 and earlier in BuildMasterConfiguration.java, BuildMasterConfig.java, BuildMasterApi.java that allows attackers to impersonate any service that Jenkins connects to...
Authorization
A man in the middle vulnerability exists in Jenkins Inedo BuildMaster Plugin 1.3 and earlier in BuildMasterConfiguration.java, BuildMasterConfig.java, BuildMasterApi.java that allows attackers to impersonate any service that Jenkins connects to...
CVE-2018-1999035
The CVE-2018-1999035 entry concerns Jenkins Inedo BuildMaster Plugin (versions 1.3 and earlier). The connected sources describe a man-in-the-middle vulnerability that enables an attacker to impersonate any service that Jenkins connects to, affecting the plugin’s components BuildMasterConfiguratio...
CVE-2018-1999035
A man in the middle vulnerability exists in Jenkins Inedo BuildMaster Plugin 1.3 and earlier in BuildMasterConfiguration.java, BuildMasterConfig.java, BuildMasterApi.java that allows attackers to impersonate any service that Jenkins connects to...
Inedo BuildMaster Cross-Site Scripting Vulnerability
Inedo BuildMaster is a suite of automated deployment software from Inedo USA. The software integrates a variety of tools to automate the deployment of application suites. A cross-site scripting vulnerability exists in versions of Inedo BuildMaster prior to 5.8.2. A remote attacker can exploit thi...
Inedo BuildMaster Elevation of Privilege Vulnerability
Inedo BuildMaster is a suite of automated deployment software from Inedo USA. The software integrates a variety of tools to automate the deployment of application suites. A security vulnerability exists in versions of Inedo BuildMaster prior to 5.8.2 that stems from the program failing to properl...
Unspecified Vulnerability in Inedo BuildMaster
Inedo BuildMaster is a suite of automated deployment software from Inedo Japan. The software integrates a variety of tools to automate the deployment of application suites. A security vulnerability exists in versions of Inedo BuildMaster prior to 5.8.2, which stems from the program using...
Inedo BuildMaster Open Redirect Vulnerability
BuildMaster is a modern application release automation tool for creating simple or complex release pipelines for any organizational need. An open redirection vulnerability exists in Inedo BuildMaster versions prior to 5.8.2. A remote attacker can exploit this vulnerability to redirect users to...
CVE-2017-16520
Inedo BuildMaster before 5.8.2 does not properly restrict creation of RequireManageAllPrivileges event listeners...
CVE-2017-16520
Inedo BuildMaster before 5.8.2 does not properly restrict creation of RequireManageAllPrivileges event listeners...
Design/Logic Flaw
Inedo BuildMaster before 5.8.2 does not properly restrict creation of RequireManageAllPrivileges event listeners...
CVE-2017-16520
Inedo BuildMaster before 5.8.2 does not properly restrict creation of RequireManageAllPrivileges event listeners...
CVE-2017-16520
Inedo BuildMaster prior to 5.8.2 contains an Elevation of Privilege vulnerability: it does not properly restrict creation of RequireManageAllPrivileges event listeners, enabling an attacker to create event monitors. This is described across CVE-2017-16520 records and corroborated by CNVD-2017-364...
CVE-2017-16760
Inedo BuildMaster before 5.8.2 has XSS...
CVE-2017-16760
Inedo BuildMaster before 5.8.2 has XSS...
CVE-2017-16521
In Inedo BuildMaster before 5.8.2, XslTransform was used where XslCompiledTransform should have been used...
CVE-2017-16761
An Open Redirect vulnerability in Inedo BuildMaster before 5.8.2 allows remote attackers to redirect users to arbitrary web sites...
Open redirect
An Open Redirect vulnerability in Inedo BuildMaster before 5.8.2 allows remote attackers to redirect users to arbitrary web sites...
Cross site scripting
Inedo BuildMaster before 5.8.2 has XSS...
CVE-2017-16761
An Open Redirect vulnerability in Inedo BuildMaster before 5.8.2 allows remote attackers to redirect users to arbitrary web sites...