5 matches found
Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.15 Multiple Vulnerabilities (CloudBees Security Advisory 2023-04-12)
The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.346.x prior to 2.346.40.0.15. It is, therefore, affected by multiple vulnerabilities including the following: - Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask i.e....
CVE-2023-30522
creationtimestamp| type| source ---|---|--- 2023-04-12 22:24:35+00:00| seen| https://t.me/cibsecurity/62001...
CVE-2023-30522
A missing permission check in Jenkins Fogbugz Plugin 2.2.17 and earlier allows attackers with Item/Read permission to trigger builds of jobs specified in a 'jobname' request parameter...
CVE-2023-30522
The CVE-2023-30522 entry refers to a missing permission check in Jenkins Fogbugz Plugin (versions 2.2.17 and earlier) that allows attackers with Item/Read permission to trigger builds of specified jobs via the webhook endpoint at /fbTrigger/. The connected sources (NVD/NASL/Tenable/Red Hat adviso...
CVE-2023-30522
A missing permission check in Jenkins Fogbugz Plugin 2.2.17 and earlier allows attackers with Item/Read permission to trigger builds of jobs specified in a 'jobname' request parameter...