Lucene search
K

7 matches found

vulnersOsv
vulnersOsv
added 2022/05/17 3:53 a.m.7 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1186 more potentially affected by CVE-2014-3665 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.586)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =0.9, =1.3, =1.0, =1.0.3, =1.0.0, =1.0, =1.0.0, =2.2.0, =1.0-beta-1, =4.18 - com.boxuk.jenkins:jslint =0.7.4 and more Source cves: CVE-2014-3665 Source advisory: OSV:GHSA-66CR-6WHX-732P...

6.8CVSS5.8AI score0.02502EPSS
Exploits0
OpenVAS
OpenVAS
added 2016/08/05 12:0 a.m.36 views

Jenkins Remote Code Execution Vulnerability (Nov 2014) - Linux

Jenkins is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins";...

6.8CVSS4.4AI score0.02502EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/12/15 12:0 a.m.37 views

Jenkins Remote Code Execution Vulnerability (Nov 2014) - Windows

Jenkins is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins";...

6.8CVSS4.4AI score0.02502EPSS
Exploits0References2
NVD
NVD
added 2015/11/25 8:59 p.m.21 views

CVE-2014-3665

Jenkins before 1.587 and LTS before 1.580.1 do not properly ensure trust separation between a master and slaves, which might allow remote attackers to execute arbitrary code on the master by leveraging access to the slave...

6.8CVSS7.3AI score0.02502EPSS
Exploits0References4
Cvelist
Cvelist
added 2015/11/25 8:0 p.m.26 views

CVE-2014-3665

Jenkins before 1.587 and LTS before 1.580.1 do not properly ensure trust separation between a master and slaves, which might allow remote attackers to execute arbitrary code on the master by leveraging access to the slave...

4.6AI score0.02502EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2014/10/30 12:0 a.m.36 views

jenkins -- slave-originated arbitrary code execution on master servers

Kohsuke Kawaguchi from Jenkins team reports: Historically, Jenkins master and slaves behaved as if they altogether form a single distributed process. This means a slave can ask a master to do just about anything within the confinement of the operating system, such as accessing files on the master...

6.8CVSS6.5AI score0.99999EPSS
Exploits7References3
Prion
Prion
added 2014/03/01 12:1 a.m.26 views

Directory traversal

Directory traversal vulnerability in the CLI job creation hudson/cli/CreateJobCommand.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to overwrite arbitrary files via the job name...

6.5CVSS6.7AI score0.02527EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder