100 matches found
GHSA-MMQX-G78C-HVFJ Jenkins AppDynamics Dashboard Plugin has insufficiently protected credentials
Jenkins AppDynamics Dashboard Plugin stored username and password in its configuration unencrypted in jobs' config.xml files on the Jenkins controller. This password could be viewed by users with Extended Read permission, or access to the Jenkins controller file system. While masked from view usi...
Jenkins AppDynamics Dashboard Plugin has insufficiently protected credentials
Jenkins AppDynamics Dashboard Plugin stored username and password in its configuration unencrypted in jobs' config.xml files on the Jenkins controller. This password could be viewed by users with Extended Read permission, or access to the Jenkins controller file system. While masked from view usi...
CVE-2021-34745
A vulnerability in the AppDynamics .NET Agent for Windows could allow an attacker to leverage an authenticated, local user account to gain SYSTEM privileges. This vulnerability is due to the .NET Agent Coordinator Service executing code with SYSTEM privileges. An attacker with local access to a...
CVE-2021-34745
A vulnerability in the AppDynamics .NET Agent for Windows could allow an attacker to leverage an authenticated, local user account to gain SYSTEM privileges. This vulnerability is due to the .NET Agent Coordinator Service executing code with SYSTEM privileges. An attacker with local access to a...
Code injection
A vulnerability in the AppDynamics .NET Agent for Windows could allow an attacker to leverage an authenticated, local user account to gain SYSTEM privileges. This vulnerability is due to the .NET Agent Coordinator Service executing code with SYSTEM privileges. An attacker with local access to a...
CVE-2021-34745 AppDynamics .NET Agent Privilege Escalation Vulnerability
A vulnerability in the AppDynamics .NET Agent for Windows could allow an attacker to leverage an authenticated, local user account to gain SYSTEM privileges. This vulnerability is due to the .NET Agent Coordinator Service executing code with SYSTEM privileges. An attacker with local access to a...
CVE-2021-34745 AppDynamics .NET Agent Privilege Escalation Vulnerability
A vulnerability in the AppDynamics .NET Agent for Windows could allow an attacker to leverage an authenticated, local user account to gain SYSTEM privileges. This vulnerability is due to the .NET Agent Coordinator Service executing code with SYSTEM privileges. An attacker with local access to a...
CVE-2021-34745
Summary: CVE-2021-34745 affects the AppDynamics .NET Agent for Windows. The vulnerability arises because the .NET Agent Coordinator Service can execute code with SYSTEM privileges, allowing an authenticated local user to launch a custom process that runs with SYSTEM rights and potentially execute...
AppDynamics.NET Agent for Windows 安全漏洞
AppDynamics.NET Agent for Windows is intended to be used if you want to monitor IIS applications, Windows services, or standalone applications. A security vulnerability exists in AppDynamics.NET Agent for Windows versions prior to 21.7, which originates from the .NET Agent Coordinator service...
CVE-2019-1003039
An insufficiently protected credentials vulnerability exists in JenkinsAppDynamics Dashboard Plugin 1.0.14 and earlier in src/main/java/nl/codecentric/jenkins/appd/AppDynamicsResultsPublisher.java that allows attackers without permission to obtain passwords configured in jobs to obtain them...
CVE-2019-1003039
An insufficiently protected credentials vulnerability exists in JenkinsAppDynamics Dashboard Plugin 1.0.14 and earlier in src/main/java/nl/codecentric/jenkins/appd/AppDynamicsResultsPublisher.java that allows attackers without permission to obtain passwords configured in jobs to obtain them...
CVE-2019-1003039
Summary: CVE-2019-1003039 concerns the Jenkins AppDynamics Dashboard Plugin (versions ≤ 1.0.14) with an issue in AppDynamicsResultsPublisher.java that allowed attackers with no special permissions to obtain passwords configured in jobs. The root cause is insufficient protection of credentials sto...
PT-2019-11332 · Jenkins · Jenkins Appdynamics Dashboard Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins AppDynamics Dashboard Plugin versions 1.0.14 and earlier Description: The issue allows attackers without permission to obtain passwords configured in jobs. This is due to insufficient protection of credentials in the JenkinsAppDynamic...
Cisco AppDynamics App iQ Platform SQL Injection Vulnerability
Cisco AppDynamics App iQ Platform is a real-time application and business performance monitoring solution from Cisco. A SQL injection vulnerability exists in the Enterprise Console in versions prior to Cisco AppDynamics App iQ Platform 4.4.3.10598 HF4. A remote attacker could exploit the...
Sql injection
The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 HF4 allows SQL injection, aka the Security Advisory 2089 issue...
CVE-2018-0225
The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 HF4 allows SQL injection, aka the Security Advisory 2089 issue...
CVE-2018-0225
The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 HF4 allows SQL injection, aka the Security Advisory 2089 issue...
CVE-2018-0225
The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 HF4 allows SQL injection, aka the Security Advisory 2089 issue...
CVE-2018-0225
CVE-2018-0225 concerns the Cisco AppDynamics App iQ Platform Enterprise Console, vulnerable in versions prior to 4.4.3.10598 (HF4). The connected sources specify a SQL injection vulnerability in the Enterprise Console, with a CVSSv3 base score of 9.8 (CRITICAL) and CVSSv2 base score of 7.5 (HIGH)...
CVE-2018-0225
The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 HF4 allows SQL injection, aka the Security Advisory 2089 issue...