Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-5444

Malicious code in bioql PyPI...

3.3CVSS4.7AI score0.00368EPSS
Exploits0References4
Snyk
Snyk
added 2025/07/09 4:49 p.m.2 views

Insufficiently Protected Credentials

Overview Affected versions of this package are vulnerable to Insufficiently Protected Credentials in the global configuration form, where the AWS Secret Key is not properly masked. An attacker can obtain sensitive credentials by viewing the configuration interface. Remediation There is no fixed...

5.3CVSS6.8AI score0.00313EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:41 a.m.11 views

CVE-2019-10367

Due to an incomplete fix of CVE-2019-10343, Jenkins Configuration as Code Plugin 1.26 and earlier did not properly apply masking to some values expected to be hidden when logging the configuration being applied...

5.5CVSS6.8AI score0.00382EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/16 12:0 a.m.6 views

PT-2023-24115 · Jenkins · Jenkins Ansible Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Ansible Plugin versions 204.v8191fd551eb f and earlier Description: The issue concerns the storage of extra variables, often used to pass secrets, in an unencrypted manner in job config.xml files on the Jenkins controller. These...

4.3CVSS4.3AI score0.00377EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/04/12 12:0 a.m.6 views

PT-2023-22751 · Jenkins · Jenkins Report Portal Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Report Portal Plugin versions 0.5 and earlier Description: The Jenkins Report Portal Plugin stores ReportPortal access tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can...

4.3CVSS4.3AI score0.00323EPSS
Exploits0References7
Rows per page
Query Builder