Lucene search
+L

11 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-3118

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01117EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/05/22 8:22 a.m.10 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.5CVSS6.8AI score0.01117EPSS
Exploits0References1
osv
osv
added 2022/05/24 4:52 p.m.49 views

GHSA-862J-CV9P-6HPF Jenkins Codefresh Integration Plugin Improper Certificate Validation vulnerability

Codefresh Integration Plugin unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. As of publication of this advisory, there is no fix...

6.5CVSS7.6AI score0.01117EPSS
Exploits0References3
github
github
added 2022/05/24 4:52 p.m.22 views

Jenkins Codefresh Integration Plugin Improper Certificate Validation vulnerability

Codefresh Integration Plugin unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. As of publication of this advisory, there is no fix...

7.5CVSS2.6AI score0.01117EPSS
Exploits0References4Affected Software1
cnvd
cnvd
added 2019/08/15 12:0 a.m.5 views

CloudBees Jenkins Codefresh Integration Plugin Authorization Issues Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . An authorization issue vulnerability exists in CloudBees Jenkins Codefresh Integration Plugin, which can be exploited by an attacker to attack affected components...

7.5CVSS6.9AI score0.01117EPSS
Exploits0References1
osv
osv
added 2019/08/07 3:15 p.m.14 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.5CVSS6.8AI score
Exploits0References2
nvd
nvd
added 2019/08/07 3:15 p.m.29 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.5CVSS7.6AI score0.01117EPSS
Exploits0References2
prion
prion
added 2019/08/07 3:15 p.m.17 views

Design/Logic Flaw

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

4.3CVSS7.5AI score0.01117EPSS
Exploits0References2Affected Software1
cve
cve
added 2019/08/07 2:20 p.m.58 views

CVE-2019-10381

The CVE-2019-10381 entry concerns the Jenkins Codefresh Integration Plugin (versions 1.8 and earlier) which unconditionally disables SSL/TLS certificate validation and hostname verification for the entire Jenkins master JVM. This web-wide insecure behavior enables connections to proceed without p...

7.5CVSS7.5AI score0.01117EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2019/08/07 2:20 p.m.25 views

CVE-2019-10381

Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM...

7.6AI score0.01117EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2019/08/07 12:0 a.m.7 views

PT-2019-11777 · Jenkins · Jenkins Codefresh Integration Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Codefresh Integration Plugin versions 1.8 and earlier Description: The issue concerns the Jenkins Codefresh Integration Plugin, which unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. This...

7.5CVSS7.3AI score0.01117EPSS
Exploits0References5
Rows per page
Query Builder