CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-3118

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00053EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 8:22 a.m.•6 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.5CVSS6.8AI score0.00053EPSS

Exploits0References1

Github Security Blog•added 2022/05/24 4:52 p.m.•18 views

Jenkins Codefresh Integration Plugin Improper Certificate Validation vulnerability

Codefresh Integration Plugin unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. As of publication of this advisory, there is no fix...

7.5CVSS2.6AI score0.00053EPSS

Exploits0References4Affected Software1

OSV•added 2022/05/24 4:52 p.m.•21 views

GHSA-862J-CV9P-6HPF Jenkins Codefresh Integration Plugin Improper Certificate Validation vulnerability

Codefresh Integration Plugin unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. As of publication of this advisory, there is no fix...

6.5CVSS7.6AI score0.00053EPSS

Exploits0References3

CNVD•added 2019/08/15 12:0 a.m.•2 views

CloudBees Jenkins Codefresh Integration Plugin Authorization Issues Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . An authorization issue vulnerability exists in CloudBees Jenkins Codefresh Integration Plugin, which can be exploited by an attacker to attack affected components...

7.5CVSS6.9AI score0.00053EPSS

Exploits0References1

OSV•added 2019/08/07 3:15 p.m.•11 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.5CVSS6.8AI score

Exploits0References2

NVD•added 2019/08/07 3:15 p.m.•10 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.5CVSS7.6AI score0.00053EPSS

Exploits0References2

Prion•added 2019/08/07 3:15 p.m.•12 views

Design/Logic Flaw

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

4.3CVSS7.5AI score0.00053EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/08/07 2:20 p.m.•12 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.6AI score0.00053EPSS

Exploits0References2

CVE•added 2019/08/07 2:20 p.m.•48 views

CVE-2019-10381

The CVE-2019-10381 entry concerns the Jenkins Codefresh Integration Plugin (versions 1.8 and earlier) which unconditionally disables SSL/TLS certificate validation and hostname verification for the entire Jenkins master JVM. This web-wide insecure behavior enables connections to proceed without p...

7.5CVSS7.5AI score0.00053EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2019/08/07 12:0 a.m.•2 views

PT-2019-11777 · Jenkins · Jenkins Codefresh Integration Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Codefresh Integration Plugin versions 1.8 and earlier Description: The issue concerns the Jenkins Codefresh Integration Plugin, which unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. This...

7.5CVSS7.3AI score0.00053EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by