Lucene search
K

4 matches found

OSV
OSV
added 2024/01/09 8:15 a.m.5 views

CVE-2023-6147

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs...

6.5CVSS5.8AI score0.00547EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/01/09 8:8 a.m.11 views

CVE-2023-6147 Possible XXE vulnerability in Jenkins Plugin for Qualys Policy Compliance

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs...

5.7CVSS6.1AI score0.00547EPSS
Exploits0References2
CVE
CVE
added 2024/01/09 8:8 a.m.58 views

CVE-2023-6147

The Connected documents corroborate CVE-2023-6147 affecting the Qualys Jenkins Plugin for Policy Compliance (versions up to 1.0.5). The root cause is a missing permission check during a connectivity test to Qualys Cloud Services, which allowed any user with login and job-configuration access to p...

6.5CVSS6.1AI score0.00547EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/01/09 8:8 a.m.27 views

CVE-2023-6147 Possible XXE vulnerability in Jenkins Plugin for Qualys Policy Compliance

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs...

5.7CVSS6.8AI score0.00547EPSS
Exploits0References2
Rows per page
Query Builder