Lucene search
K

179 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-5735

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.03366EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-0852

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.01715EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-3993

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.01639EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.18 views

EUVD-2022-3340

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.01267EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/22 7:40 a.m.10 views

CVE-2019-1003006

A sandbox bypass vulnerability exists in Jenkins Groovy Plugin 2.0 and earlier in src/main/java/hudson/plugins/groovy/StringScriptSource.java that allows attackers with Overall/Read permission to provide a Groovy script to an HTTP endpoint that can result in arbitrary code execution on the Jenkin...

8.8CVSS7.4AI score0.0155EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/03/04 2:40 p.m.5 views

jenkins-plugin/workflow-cps: Lack of Approval Check for Rebuilt Jenkins Pipelines

A flaw was found in the Jenkins Pipeline: Groovy Plugin jenkins-plugin/workflow-cps. This vulnerability allows attackers with Item/Build permission to rebuild a previous build whose main Jenkinsfile script is no longer approved, bypassing script approval checks via the rebuild action...

8CVSS5.7AI score0.0044EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/03/04 2:39 p.m.6 views

jenkins-plugin/workflow-cps: Lack of Approval Check for Rebuilt Jenkins Pipelines

A flaw was found in the Jenkins Pipeline: Groovy Plugin jenkins-plugin/workflow-cps. This vulnerability allows attackers with Item/Build permission to rebuild a previous build whose main Jenkinsfile script is no longer approved, bypassing script approval checks via the rebuild action...

8CVSS5.7AI score0.0044EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/03/04 2:38 p.m.6 views

jenkins-plugin/workflow-cps: Lack of Approval Check for Rebuilt Jenkins Pipelines

A flaw was found in the Jenkins Pipeline: Groovy Plugin jenkins-plugin/workflow-cps. This vulnerability allows attackers with Item/Build permission to rebuild a previous build whose main Jenkinsfile script is no longer approved, bypassing script approval checks via the rebuild action...

8CVSS5.7AI score0.0044EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/03/04 2:20 p.m.6 views

jenkins-plugin/workflow-cps: Lack of Approval Check for Rebuilt Jenkins Pipelines

A flaw was found in the Jenkins Pipeline: Groovy Plugin jenkins-plugin/workflow-cps. This vulnerability allows attackers with Item/Build permission to rebuild a previous build whose main Jenkinsfile script is no longer approved, bypassing script approval checks via the rebuild action...

8CVSS5.7AI score0.0044EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/03/04 2:19 p.m.6 views

jenkins-plugin/workflow-cps: Lack of Approval Check for Rebuilt Jenkins Pipelines

A flaw was found in the Jenkins Pipeline: Groovy Plugin jenkins-plugin/workflow-cps. This vulnerability allows attackers with Item/Build permission to rebuild a previous build whose main Jenkinsfile script is no longer approved, bypassing script approval checks via the rebuild action...

8CVSS5.7AI score0.0044EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2024/11/15 7:50 a.m.27 views

CVE-2024-52550

A flaw was found in the Jenkins Pipeline: Groovy Plugin jenkins-plugin/workflow-cps. This vulnerability allows attackers with Item/Build permission to rebuild a previous build whose main Jenkinsfile script is no longer approved, bypassing script approval checks via the rebuild action. Mitigation...

8CVSS5.9AI score0.0044EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2024/11/13 9:30 p.m.25 views

Rebuilding a run with revoked script approval allowed by Jenkins Pipeline: Groovy Plugin

Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main Jenkinsfile script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build whose Jenkinsfile script is no longer...

8CVSS6.8AI score0.0044EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/11/13 9:30 p.m.20 views

GHSA-MRPR-VR82-X88R Rebuilding a run with revoked script approval allowed by Jenkins Pipeline: Groovy Plugin

Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main Jenkinsfile script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build whose Jenkinsfile script is no longer...

8.6CVSS7.7AI score0.0044EPSS
Exploits1References3
NVD
NVD
added 2024/11/13 9:15 p.m.19 views

CVE-2024-52550

Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main Jenkinsfile script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build whose Jenkinsfile script is no longer approv...

8CVSS0.0044EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/11/13 8:53 p.m.23 views

CVE-2024-52550

Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main Jenkinsfile script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build whose Jenkinsfile script is no longer approv...

6.7AI score0.0044EPSS
Exploits1References1
CVE
CVE
added 2024/11/13 8:53 p.m.117 views

CVE-2024-52550

CVE-2024-52550 affects Jenkins Pipeline: Workflow CPS (and related Jenkins Pipeline/Groovy stack) where there is a lack of approval check for rebuilt Jenkins pipelines. The issue allows users with Item/Build permissions to rebuild a previous build whose Jenkinsfile is no longer approved. A PoC/ex...

8CVSS6.9AI score0.0044EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/13 12:0 a.m.9 views

PT-2024-35372 · Jenkins · Jenkins Pipeline: Groovy Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins Pipeline: Groovy Plugin versions 3990.vd281dd77a 388 and earlier, except version 3975.3977.v478dd9e956c3 Description: The issue allows attackers with Item/Build permission to rebuild a previous build whose Jenkinsfile script is no...

8CVSS6.2AI score0.0044EPSS
Exploits1References8
VulnCheck KEV
VulnCheck KEV
added 2024/04/15 12:0 a.m.5 views

VulnCheck KEV: CVE-2019-1003001

A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.61 and earlier in src/main/java/org/jenkinsci/plugins/workflow/cps/CpsFlowDefinition.java, src/main/java/org/jenkinsci/plugins/workflow/cps/CpsGroovyShellFactory.java that allows attackers with Overall/Read permission to provide a...

8.8CVSS6.7AI score0.86224EPSS
Exploits9References1
RedHat Linux
RedHat Linux
added 2023/05/17 5:53 p.m.5 views

jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS7.6AI score0.0116EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/03/06 9:1 a.m.104 views

Critical: Red Hat Security Advisory: OpenShift Developer Tools and Services for OCP 4.12 security update

An update for Jenkins and Jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.12. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.9CVSS6.7AI score0.03571EPSS
Exploits4References16
Rows per page
Query Builder