Lucene search
K

4 matches found

HackRead
HackRead
added 2025/08/08 7:14 p.m.8 views

15,000 Jenkins Servers at Risk from RCE Vulnerability (CVE-2025-53652)

A new report by VulnCheck exposes a critical command injection flaw CVE-2025-53652 in the Jenkins Git Parameter plugin.…...

8.2CVSS7.4AI score0.00618EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/07/16 12:0 a.m.7 views

The vulnerability of the Sensedia API Platform Tools for Jenkins servers, related to the storage of tokens in unencrypted form, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Sensedia Api Platform tools for Jenkins servers relates to the storage of tokens in an unencrypted form within the file com.sensedia.configuration.SensediaApiConfiguration.xml. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to...

5.3CVSS5.4AI score0.00252EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/09/21 4:15 p.m.18 views

Code injection

Jenkins Build-Publisher Plugin 1.22 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to obtain names and URLs of Jenkins servers that the plugin is configured to publish builds to, as well as builds pending for publication to tho...

4CVSS4.4AI score0.00503EPSS
Exploits0References1Affected Software1
Nmap
Nmap
added 2018/06/23 7:46 p.m.643 views

broadcast-jenkins-discover NSE Script

Discovers Jenkins servers on a LAN by sending a discovery broadcast probe. For more information about Jenkins auto discovery, see: Script Arguments broadcast-jenkins.address address to which the probe packet is sent. default: 255.255.255.255 broadcast-jenkins.timeout socket timeout default: 5s...

10CVSS9.1AI score0.99448EPSS
Exploits33
Rows per page
Query Builder