Lucene search
K

24 matches found

NVD
NVD
added 2017/10/05 1:29 a.m.14 views

CVE-2017-1000094

Docker Commons Plugin provides a list of applicable credential IDs to allow users configuring a job to select the one they'd like to use to authenticate with a Docker Registry. This functionality did not check permissions, allowing any user with Overall/Read permission to get a list of valid...

6.5CVSS6.4AI score0.0097EPSS
Exploits0References1
Prion
Prion
added 2017/10/05 1:29 a.m.10 views

Design/Logic Flaw

Docker Commons Plugin provides a list of applicable credential IDs to allow users configuring a job to select the one they'd like to use to authenticate with a Docker Registry. This functionality did not check permissions, allowing any user with Overall/Read permission to get a list of valid...

4CVSS6.3AI score0.0097EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/10/04 1:0 a.m.18 views

CVE-2017-1000094

Docker Commons Plugin provides a list of applicable credential IDs to allow users configuring a job to select the one they'd like to use to authenticate with a Docker Registry. This functionality did not check permissions, allowing any user with Overall/Read permission to get a list of valid...

6.3AI score0.0097EPSS
Exploits0References1
CVE
CVE
added 2017/10/04 1:0 a.m.69 views

CVE-2017-1000094

The CVE-2017-1000094 entry concerns the Jenkins Docker Commons Plugin. The exposed issue is that the plugin enumerates credential IDs without proper permission checks, allowing any user with Overall/Read permission to retrieve a list of valid credentials IDs. This can facilitate credential theft ...

6.5CVSS6.3AI score0.0097EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder