CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7755 matches found

OpenVAS•added 2022/08/01 12:0 a.m.•7 views

Fedora: Security Advisory for restic (FEDORA-2022-5038c3236c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2

Fedora•added 2022/07/31 1:37 a.m.•18 views

[SECURITY] Fedora 36 Update: restic-0.12.1-4.fc36

A backup program that is easy, fast, verifiable, secure, efficient and free. Backup destinations can be: Local SFTP REST Server Amazon S3 Minio Server OpenStack Swift Backblaze B2 Microsoft Azure Blob Storage Google Cloud Storage Other Services via rclone...

2.3AI score

Exploits0

Fedora•added 2022/07/31 1:37 a.m.•11 views

[SECURITY] Fedora 36 Update: gotun-0-0.15.gita9dbe4d.fc36

Tool to run tests on OpenStack...

2.1AI score

Exploits0

OSV•added 2022/07/28 12:0 a.m.•39 views

GHSA-MR38-G7Q2-X79P Jenkins Openstack Heat Plugin does not perform permission checks in methods implementing form validation

Jenkins openstack-heat Plugin 1.5 and earlier does not perform permission checks in methods implementing form validation. This allows attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system. A sequence of requests...

4.3CVSS4.8AI score0.00064EPSS

Exploits0References4

OSV•added 2022/07/28 12:0 a.m.•23 views

GHSA-HM53-HRHH-GWFQ Missing permission checks in Jenkins openstack-heat Plugin

openstack-heat Plugin 1.5 and earlier does not perform permission checks in methods implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS4.8AI score0.00158EPSS

Exploits0References4

Github Security Blog•added 2022/07/28 12:0 a.m.•23 views

Missing permission checks in Jenkins openstack-heat Plugin

4.3CVSS5.3AI score0.00158EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2022/07/28 12:0 a.m.•25 views

CSRF vulnerability in Jenkins openstack-heat Plugin

openstack-heat Plugin 1.5 and earlier does not perform permission checks in methods implementing form validation. This form validation methods do not require POST requests, resulting in a cross-site request forgery CSRF vulnerability...

6.5CVSS6.6AI score0.00129EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2022/07/28 12:0 a.m.•31 views

Jenkins Openstack Heat Plugin does not perform permission checks in methods implementing form validation

4.3CVSS4.9AI score0.00064EPSS

Exploits0References5Affected Software1

OSV•added 2022/07/28 12:0 a.m.•18 views

GHSA-FQHM-FJJV-7Q8X CSRF vulnerability in Jenkins openstack-heat Plugin

4.3CVSS6.8AI score0.00129EPSS

Exploits0References4

OpenVAS•added 2022/07/28 12:0 a.m.•25 views

SUSE: Security Advisory (SUSE-SU-2022:2565-1)

9.1CVSS6.8AI score0.00274EPSS

Exploits0References4

NVD•added 2022/07/27 3:15 p.m.•9 views

CVE-2022-36913

Jenkins Openstack Heat Plugin 1.5 and earlier does not perform permission checks in methods implementing form validation, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system...

4.3CVSS0.00064EPSS

Exploits0References2

ATTACKERKB•added 2022/07/27 3:15 p.m.•5 views

CVE-2022-36913

4.3CVSS5.8AI score0.00064EPSS

Exploits0References4

OSV•added 2022/07/27 3:15 p.m.•0 views

CVE-2022-36913

4.3CVSS5.8AI score

Exploits0References2

NVD•added 2022/07/27 3:15 p.m.•11 views

CVE-2022-36911

A cross-site request forgery CSRF vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS0.00129EPSS

Exploits0References2

OSV•added 2022/07/27 3:15 p.m.•2 views

CVE-2022-36911

A cross-site request forgery CSRF vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS5.7AI score

Exploits0References2

ATTACKERKB•added 2022/07/27 3:15 p.m.•4 views

CVE-2022-36911

A cross-site request forgery CSRF vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS5.6AI score0.00129EPSS

Exploits0References4

OSV•added 2022/07/27 3:15 p.m.•4 views

CVE-2022-36912

A missing permission check in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS5.8AI score

Exploits0References2

NVD•added 2022/07/27 3:15 p.m.•12 views

CVE-2022-36912

A missing permission check in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS0.00158EPSS

Exploits0References2

Prion•added 2022/07/27 3:15 p.m.•9 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL...

4.3CVSS6.4AI score0.00129EPSS

Exploits0References2Affected Software1

Prion•added 2022/07/27 3:15 p.m.•14 views

Design/Logic Flaw

A missing permission check in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4CVSS4.4AI score0.00158EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by