Lucene search
K

47 matches found

RedHat Linux
RedHat Linux
added 2023/02/23 12:1 a.m.6 views

jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS6.1AI score0.01095EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/02/23 12:1 a.m.6 views

jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS6.1AI score0.01161EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/02/10 12:0 a.m.3 views

PT-2023-32946 · Unknown · Artemis Java Test Sandbox

Name of the Vulnerable Software and Affected Versions: Artemis Java Test Sandbox versions prior to 1.11.2 Description: The issue allows an attacker to escape the sandbox by loading untrusted libraries using System.load or System.loadLibrary. This can lead to arbitrary Java code execution when a...

8.2CVSS8.6AI score0.00344EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2023/02/08 6:41 p.m.6 views

jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS7.6AI score0.01211EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/02/08 6:41 p.m.5 views

jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS7.6AI score0.01428EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/02/08 6:41 p.m.4 views

jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS7.6AI score0.0116EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/02/08 6:41 p.m.4 views

jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS7.6AI score0.01095EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/10/20 6:47 a.m.55 views

CVE-2022-43403

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS4.5AI score0.01428EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/10/20 6:47 a.m.45 views

CVE-2022-43404

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS4.5AI score0.01095EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/10/20 6:47 a.m.69 views

CVE-2022-43402

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS4.5AI score0.0116EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/10/20 6:47 a.m.65 views

CVE-2022-43401

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS4.5AI score0.01211EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/10/20 6:17 a.m.44 views

CVE-2022-43405

A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and...

9.9CVSS4.5AI score0.01161EPSS
Exploits0References4
OSV
OSV
added 2022/10/19 4:15 p.m.3 views

CVE-2022-43406

A sandbox bypass vulnerability in Jenkins Pipeline: Deprecated Groovy Libraries Plugin 583.vf3b454e43966 and earlier allows attackers with permission to define untrusted Pipeline libraries and to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute...

9.9CVSS6AI score0.01095EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/10/19 4:15 p.m.2 views

CVE-2022-43406

A sandbox bypass vulnerability in Jenkins Pipeline: Deprecated Groovy Libraries Plugin 583.vf3b454e43966 and earlier allows attackers with permission to define untrusted Pipeline libraries and to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute...

9.9CVSS6.1AI score0.01095EPSS
Exploits0References4
OSV
OSV
added 2022/10/19 4:15 p.m.2 views

CVE-2022-43405

A sandbox bypass vulnerability in Jenkins Pipeline: Groovy Libraries Plugin 612.v84da9c54906d and earlier allows attackers with permission to define untrusted Pipeline libraries and to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary co...

9.9CVSS6AI score0.01161EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/10/19 4:15 p.m.2 views

CVE-2022-43405

A sandbox bypass vulnerability in Jenkins Pipeline: Groovy Libraries Plugin 612.v84da9c54906d and earlier allows attackers with permission to define untrusted Pipeline libraries and to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary co...

9.9CVSS6.1AI score0.01161EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/10/19 12:0 a.m.4 views

Jenkins Plugin Pipeline:Deprecated Groovy Libraries 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

9.9CVSS8.8AI score0.01095EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/10/19 12:0 a.m.4 views

PT-2022-26889 · Jenkins · Jenkins Pipeline: Shared Groovy Libraries Plugin +2

Name of the Vulnerable Software and Affected Versions: Jenkins Pipeline: Groovy Libraries Plugin versions 612.v84da 9c54906d and earlier Jenkins Pipeline: Deprecated Groovy Libraries Plugin versions 583.vf3b 454e43966 and earlier Description: A sandbox bypass issue allows attackers with permissio...

9.9CVSS9.5AI score0.01161EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/10/19 12:0 a.m.7 views

PT-2022-26890 · Jenkins · Jenkins Pipeline: Shared Groovy Libraries Plugin +2

Name of the Vulnerable Software and Affected Versions: Jenkins Pipeline: Deprecated Groovy Libraries Plugin versions 583.vf3b 454e43966 and earlier Jenkins Pipeline: Groovy Libraries Plugin versions 612.v84da 9c54906d and earlier Description: A sandbox bypass issue allows attackers with permissio...

9.9CVSS9.5AI score0.01095EPSS
Exploits0References5
CNVD
CNVD
added 2020/04/15 12:0 a.m.3 views

DLL Hijacking Vulnerability in App Store

Application Treasure is a mobile application acquisition platform created by Tencent Application Center for smartphone users. Application Treasure suffers from a DLL hijacking vulnerability, which can be exploited by an attacker to load untrusted dynamic link libraries for command execution...

7.3AI score
Exploits0
Rows per page
Query Builder