Lucene search
K

7 matches found

OSV
OSV
added 2026/04/15 1:43 p.m.5 views

SUSE-SU-2026:1356-1 Security update for nfs-utils

This update for nfs-utils fixes the following issue: Security fixes: - CVE-2025-12801: rpc.mountd allows a NFSv3 client to escalate their privileges and access subdirectories and subtrees of an exported directory bsc1259204. Other fixes: - Split from nfs-utils into its own spec and changelog file...

6.5CVSS5.8AI score0.00462EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/01/31 12:0 a.m.19 views

Fedora 40 : phpMyAdmin (2025-c17ef0f176)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-c17ef0f176 advisory. phpMyAdmin 5.2.2 is released Welcome to the release of phpMyAdmin version 5.2.2, the I should have released this sooner release. This is primarily a...

9.8CVSS7.9AI score0.8833EPSS
Exploits17References9
OSV
OSV
added 2022/05/24 5:35 p.m.18 views

GHSA-G9HG-X9C9-7XGR XXE vulnerability in Jenkins CVS Plugin

Jenkins CVS Plugin 2.16 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control an agent process to have Jenkins parse a crafted changelog file that uses external entities for extraction of secrets from the Jenkins controller...

7.5CVSS7.5AI score0.01342EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/02/03 9:46 a.m.12 views

jenkins-2-plugins/subversion: XML parser is not preventing XML external entity (XXE) attacks

A flaw was found in the subversion Jenkins plugin. The XML parser is not properly configured to prevent XML external entity XXE attacks allowing an attacker the ability to control an agent process and have Jenkins parse a crafted changelog file that uses external entities for extraction of secret...

6.5CVSS7.1AI score0.01478EPSS
Exploits0References5
Veracode
Veracode
added 2021/01/21 8:57 a.m.32 views

XML External Entity (XXE)

jenkins-2-plugins is vulnerable to XML external entity XXE attacks. The vulnerability exists because of a flaw was found in the subversion Jenkins plugin that was not configured properly to prevent XML external entity XXE attacks allowing an attacker the ability to control an agent process and ha...

6.5CVSS3.8AI score0.01478EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/02/11 12:0 a.m.101 views

Fedora 28 : phpMyAdmin (2019-6cfd17b03d)

Upstream announcement: Security fix: phpMyAdmin 4.8.5 is released The phpMyAdmin team announces the release of phpMyAdmin version 4.8.5. Among other bug fixes, this contains several important security fixes. Upgrading is highly recommended for all users. The security fixes involve : - Arbitrary...

9.8CVSS8.4AI score0.03881EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/02/11 12:0 a.m.44 views

Fedora 29 : phpMyAdmin (2019-09ae31d880)

Upstream announcement: Security fix: phpMyAdmin 4.8.5 is released The phpMyAdmin team announces the release of phpMyAdmin version 4.8.5. Among other bug fixes, this contains several important security fixes. Upgrading is highly recommended for all users. The security fixes involve : - Arbitrary...

9.8CVSS8.4AI score0.03881EPSS
Exploits0References2
Rows per page
Query Builder