CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-5544

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00259EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 6:57 a.m.•7 views

CVE-2018-1999033

An exposure of sensitive information vulnerability exists in Jenkins Anchore Container Image Scanner Plugin 10.16 and earlier in AnchoreBuilder.java that allows attackers with Item/ExtendedRead permission or file system access to the Jenkins master to obtain the password stored in this plugin's...

6.5CVSS6.2AI score0.00259EPSS

Exploits0References1

OSV•added 2022/09/21 4:15 p.m.•9 views

CVE-2022-41225

Jenkins Anchore Container Image Scanner Plugin 1.0.24 and earlier does not escape content provided by the Anchore engine API, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control API responses by Anchore engine...

5.4CVSS5.3AI score

Exploits0References1

Github Security Blog•added 2022/05/24 5:1 p.m.•22 views

Jenkins Anchore Container Scanner Plugin vulnerable to Insufficiently Protected Credentials

Jenkins Anchore Container Image Scanner Plugin 1.0.19 and earlier stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system. The credential being stored was a service password f...

6.5CVSS2.4AI score0.00047EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2022/05/13 1:30 a.m.•16 views

Exposure of sensitive information in Anchore Container Image Scanner Jenkins Plugin

6.5CVSS2.8AI score0.00259EPSS

Exploits0References3Affected Software1