CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CNNVD•added 2025/09/17 12:0 a.m.•2 views

NeuVector 安全漏洞

NeuVector is an end-to-end container security platform from US-based NeuVector. The platform includes features such as image vulnerability management, access control and container process/filesystem protection. A security vulnerability exists in NeuVector that stems from the execution of Java...

5.3CVSS6.6AI score0.00062EPSS

Exploits0References2

SUSE CVE•added 2025/08/26 11:25 p.m.•1 views

SUSE CVE-2025-8077

A vulnerability exists in NeuVector versions up to and including 5.4.5, where a fixed string is used as the default password for the built-in admin account. If this password is not changed immediately after deployment, any workload with network access within the cluster could use the default...

9.8CVSS7.1AI score0.00098EPSS

Exploits0References4

OSV•added 2023/11/29 3:30 p.m.•19 views

GHSA-PH87-4X2G-6HP4 Jenkins NeuVector Vulnerability Scanner Plugin missing permission check

Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier does not perform a permission check in a connection test HTTP endpoint. This allows attackers with Overall/Read permission to connect to an attacker-specified hostname and port using attacker-specified username and password...

4.3CVSS4.8AI score0.00049EPSS

Exploits0References4

Prion•added 2023/11/29 2:15 p.m.•9 views

Default credentials

A missing permission check in Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified hostname and port using attacker-specified username and password...

4CVSS6.9AI score0.00049EPSS

Exploits0References2Affected Software1

Cvelist•added 2023/11/29 1:45 p.m.•17 views

CVE-2023-49674

5.1AI score0.00049EPSS

Exploits0References2

CNNVD•added 2023/11/29 12:0 a.m.•1 views

Jenkins Plugin NeuVector Vulnerability Scanner Plugin Security Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

8.8CVSS6.7AI score0.00074EPSS

Exploits0References2

Positive Technologies•added 2023/11/29 12:0 a.m.•3 views

PT-2023-31283 · Jenkins · Jenkins Neuvector Vulnerability Scanner Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins NeuVector Vulnerability Scanner Plugin versions 1.22 and earlier Description: A cross-site request forgery CSRF vulnerability exists due to the lack of permission checks in a connection test HTTP endpoint, allowing attackers with...

8.8CVSS6.8AI score0.00074EPSS

Exploits0References6

Tenable Nessus•added 2023/04/13 12:0 a.m.•22 views

Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.15 Multiple Vulnerabilities (CloudBees Security Advisory 2023-04-12)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.346.x prior to 2.346.40.0.15. It is, therefore, affected by multiple vulnerabilities including the following: - Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask i.e....

8.8CVSS5.9AI score0.07113EPSS

Exploits0References21

OSV•added 2022/10/19 7:0 p.m.•24 views

GHSA-WMFH-H3VM-RCXM Content-Security-Policy protection for user content disabled by Jenkins NeuVector Vulnerability Scanner Plugin

Jenkins sets the Content-Security-Policy header to static files served by Jenkins specifically DirectoryBrowserSupport, such as workspaces, /userContent, or archived artifacts, unless a Resource Root URL is specified. NeuVector Vulnerability Scanner Plugin 1.20 and earlier globally disables the...

8CVSS5.3AI score0.01107EPSS

Exploits0References5

OSV•added 2019/09/25 4:15 p.m.•2 views

CVE-2019-10430

Jenkins NeuVector Vulnerability Scanner Plugin 1.5 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

5.5CVSS6.1AI score0.00011EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by