Lucene search
K

32 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.4 views

SUSE CVE-2014-2058

BuildTrigger in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to bypass access restrictions and execute arbitrary jobs by configuring a job to trigger another job. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7330...

6.5CVSS7AI score0.01844EPSS
Exploits0References3
OSV
OSV
added 2022/05/17 3:53 a.m.6 views

GHSA-7FPG-PP3M-H22F Jenkins allows attackers to execute arbitrary jobs

BuildTrigger in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to bypass access restrictions and execute arbitrary jobs by configuring a job to trigger another job. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7330...

6.5CVSS6.1AI score0.01844EPSS
Exploits0References5
OSV
OSV
added 2022/05/05 2:48 a.m.1 views

GHSA-25C5-58XW-HW5Q Jenkins allows Remote Users to Build Arbitrary Jobs

Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote authenticated users with write access to build arbitrary jobs via unknown attack vectors...

5.3CVSS6AI score0.01762EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2022/05/05 2:48 a.m.9 views

Jenkins allows Remote Users to Build Arbitrary Jobs

Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote authenticated users with write access to build arbitrary jobs via unknown attack vectors...

4CVSS6.4AI score0.01762EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2019/05/02 4:56 a.m.47 views

Authorization Bypass

jenkins is vulnerable to authorization bypass. The vulnerability exists as remotely authenticated users with Job/CONFIGURE permission can bypass intended restrictions to create or destroy arbitrary jobs...

6CVSS9.1AI score0.05406EPSS
Exploits7References28Affected Software37
Veracode
Veracode
added 2019/05/02 4:43 a.m.22 views

Information Disclosure

Condor is vulnerable to information disclosure. Remote attackers are able to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...

5.8CVSS5.9AI score0.01667EPSS
Exploits0References24Affected Software12
NVD
NVD
added 2014/10/17 3:55 p.m.26 views

CVE-2014-2058

BuildTrigger in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to bypass access restrictions and execute arbitrary jobs by configuring a job to trigger another job. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7330...

6.5CVSS6.8AI score0.01844EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/10/17 3:55 p.m.27 views

CVE-2014-2058

BuildTrigger in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to bypass access restrictions and execute arbitrary jobs by configuring a job to trigger another job. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7330...

6.5CVSS5.9AI score0.01844EPSS
Exploits0References3
CVE
CVE
added 2014/10/17 3:0 p.m.68 views

CVE-2014-2058

CVE-2014-2058 affects Jenkins (BuildTrigger) where authenticated remote users could bypass access restrictions and trigger arbitrary jobs by configuring a job to trigger another. Affected versions are Jenkins before 1.551 and LTS before 1.532.2. The issue is described as a result of an incomplete...

6.5CVSS9.2AI score0.01844EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/17 3:0 p.m.30 views

CVE-2014-2058

BuildTrigger in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to bypass access restrictions and execute arbitrary jobs by configuring a job to trigger another job. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7330...

9.4AI score0.01844EPSS
Exploits0References3
Prion
Prion
added 2014/10/16 7:55 p.m.19 views

Design/Logic Flaw

Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Job/CONFIGURE permission to bypass intended restrictions and create or destroy arbitrary jobs via unspecified vectors...

6CVSS6.6AI score0.01384EPSS
Exploits0References2Affected Software2
UbuntuCve
UbuntuCve
added 2014/10/16 7:55 p.m.31 views

CVE-2014-3663

Jenkins before 1.583 and LTS before 1.565.3 allows remote authenticated users with the Job/CONFIGURE permission to bypass intended restrictions and create or destroy arbitrary jobs via unspecified vectors...

6CVSS7.3AI score0.01384EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2014/10/16 12:0 a.m.3 views

PT-2014-5441 · Cloudbees +1 · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions prior to 1.583 Jenkins LTS versions prior to 1.565.3 Description: The issue allows remote authenticated users with the Job/CONFIGURE permission to bypass intended restrictions. This can lead to the creation or destruction of...

6CVSS8.9AI score0.01384EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2013/10/20 12:0 a.m.25 views

Mandriva Linux Security Advisory : torque (MDVSA-2013:252)

Updated torque package fixes security vulnerability : A non-priviledged user who was able to run jobs or login to a node which ran pbsserver or pbsmom, could submit arbitrary jobs to a pbsmom daemon to queue and run the job, which would run as root CVE-2013-4319. %NASLMINLEVEL 70300 C Tenable...

9CVSS5.6AI score0.02915EPSS
Exploits0References2
Mageia
Mageia
added 2013/10/17 7:3 p.m.31 views

Updated torque packages fix CVE-2013-4319

Updated torque package fixes security vulnerability: A non-priviledged user who was able to run jobs or login to a node which ran pbsserver or pbsmom, could submit arbitrary jobs to a pbsmom daemon to queue and run the job, which would run as root CVE-2013-4319...

9CVSS2.4AI score0.02915EPSS
Exploits0References3
NVD
NVD
added 2013/10/11 10:55 p.m.14 views

CVE-2013-4319

pbsmom in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 2.5.x, 4.x, and earlier does not properly restrict access by unprivileged ports, which allows remote authenticated users to execute arbitrary jobs by submitting a command...

9CVSS6.8AI score0.02915EPSS
Exploits0References4
OSV
OSV
added 2013/10/11 10:55 p.m.5 views

UBUNTU-CVE-2013-4319

pbsmom in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 2.5.x, 4.x, and earlier does not properly restrict access by unprivileged ports, which allows remote authenticated users to execute arbitrary jobs by submitting a command...

9CVSS6.1AI score0.02915EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2013/10/11 10:55 p.m.25 views

CVE-2013-4319

pbsmom in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 2.5.x, 4.x, and earlier does not properly restrict access by unprivileged ports, which allows remote authenticated users to execute arbitrary jobs by submitting a command...

9CVSS5.9AI score0.02915EPSS
Exploits0References2
CVE
CVE
added 2013/10/11 10:0 p.m.55 views

CVE-2013-4319

CVE-2013-4319 affects TORQUE Resource Manager’s pbs_mom, where improper access control on unprivileged ports allows remote authenticated users to submit commands and execute arbitrary jobs. Affected versions include TORQUE 2.5.x, 4.x, and earlier. Root cause: failure to properly restrict access b...

9CVSS6.8AI score0.02915EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/10/11 10:0 p.m.30 views

CVE-2013-4319

pbsmom in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 2.5.x, 4.x, and earlier does not properly restrict access by unprivileged ports, which allows remote authenticated users to execute arbitrary jobs by submitting a command...

6.7AI score0.02915EPSS
Exploits0References4
Rows per page
Query Builder