Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.10 views

RHCOS 4 : OpenShift Container Platform 4.9.9 (RHSA-2021:4833)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4833 advisory. - jenkins: FilePathmkdirs does not check permission to create parent directories CVE-2021-21685 - jenkins: File path filters do not...

9.8CVSS5.9AI score0.02451EPSS
Exploits0References30
vulnersOsv
vulnersOsv
added 2022/05/24 7:19 p.m.5 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1594 more potentially affected by CVE-2021-21688 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.30)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2021-21688 Source advisory: OSV:GHSA-M9HR-259F-2V23...

7.5CVSS7AI score0.01327EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/05/24 7:19 p.m.21 views

Multiple vulnerabilities allow bypassing path filtering of agent-to-controller access control in Jenkins

The agent-to-controller security subsystem limits which files on the Jenkins controller can be accessed by agent processes. Multiple vulnerabilities in the file path filtering implementation of Jenkins 2.318 and earlier, LTS 2.303.2 and earlier allow agent processes to read and write arbitrary...

7.5CVSS1AI score0.01327EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2021/12/02 10:4 p.m.43 views

Important: Red Hat Security Advisory: OpenShift Container Platform 3.11.569 security update

Red Hat OpenShift Container Platform release 3.11.569 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score,...

9.8CVSS7.1AI score0.02451EPSS
Exploits0References22
RedHat Linux
RedHat Linux
added 2021/12/02 6:37 p.m.35 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.6.51 packages and security update

Red Hat OpenShift Container Platform release 4.6.51 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a...

9.8CVSS7.1AI score0.02451EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2021/11/30 9:11 a.m.35 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.8.22 security update

Red Hat OpenShift Container Platform release 4.8.22 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, whic...

9.8CVSS6.8AI score0.02451EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2021/11/05 12:0 a.m.28 views

FreeBSD : jenkins -- multiple vulnerabilities (2bf56269-90f8-4a82-b82f-c0e289f2a0dc)

Jenkins Security Advisory : DescriptionCritical SECURITY-2455 / CVE-2021-21685, CVE-2021-21686, CVE-2021-21687, CVE-2021-21688, CVE-2021-21689, CVE-2021-21690, CVE-2021-21691, CVE-2021-21692, CVE-2021-21693, CVE-2021-21694, CVE-2021-21695 Multiple vulnerabilities allow bypassing path filtering of...

9.8CVSS8.2AI score0.02451EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2021/11/05 12:0 a.m.18 views

Jenkins < 2.303.3, < 2.319 Multiple Vulnerabilities - Linux

Jenkins is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.9AI score0.02451EPSS
Exploits0References1
Circl
Circl
added 2021/11/04 7:24 p.m.6 views

CVE-2021-21688

creationtimestamp| type| source ---|---|--- 2021-11-04 19:24:59+00:00| seen| https://t.me/cibsecurity/31826...

7.5CVSS7.2AI score0.01327EPSS
Exploits0References1
NVD
NVD
added 2021/11/04 5:15 p.m.12 views

CVE-2021-21688

The agent-to-controller security check FilePathreadingFileVisitor in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not reject any operations, allowing users to have unrestricted read access using certain operations creating archives, FilePathcopyRecursiveTo...

7.5CVSS0.01327EPSS
Exploits0References1
CVE
CVE
added 2021/11/04 4:30 p.m.153 views

CVE-2021-21688

CVE-2021-21688 affects Jenkins core 2.318 and earlier (LTS 2.303.2 and earlier). The issue in FilePath#reading(FileVisitor) allows unrestricted read access on the Jenkins controller by leveraging certain operations (e.g., creating archives, FilePath#copyRecursiveTo), bypassing intended file acces...

7.5CVSS8.1AI score0.01327EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder