17 matches found
RHCOS 2 : Red Hat OpenShift Enterprise 2.2.7 (RHSA-2015:1844)
The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1844 advisory. - jenkins: Combination filter Groovy script unsecured SECURITY-125 CVE-2015-1806 - jenkins: directory traversal from artifacts via...
com.xti.jenkins.plugins:aws-lambda-jenkins-plugin (=0.0.1), org.jenkins-ci.main:jenkins-test-harness (>=1.597 <=1.599) +10 more potentially affected by CVE-2015-1806 via org.jenkins-ci.main:jenkins-core (>=1.597 <=1.599)
org.jenkins-ci.main:jenkins-core MAVEN version =1.597, =1.597, =1.597, =0.0.2, =1.2.0, =0.14.0, =1.0, =1.597, =1.17, =1.0, =1.0.0, =4.0, =4.2 Source cves: CVE-2015-1806 Source advisory: OSV:GHSA-MM9C-4CV4-7RFV...
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1191 more potentially affected by CVE-2015-1806 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.596)
org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =0.9, =1.3, =1.0, =1.0.3, =1.0.0, =1.0, =1.0.0, =2.2.0, =1.0-beta-1, =4.18 - com.boxuk.jenkins:jslint =0.7.4 and more Source cves: CVE-2015-1806 Source advisory: OSV:GHSA-MM9C-4CV4-7RFV...
Cross-Site Scripting (XSS)
OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...
Path Traversal
OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...
Sensitive Information Disclosure
OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...
CVE-2015-1806
The combination filter Groovy script in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with job configuration permission to gain privileges and execute arbitrary code on the master via unspecified vectors...
CVE-2015-1806
The CVE-2015-1806 issue affects Jenkins versions before 1.600 and LTS before 1.596.1, where a combination filter Groovy script could allow remote authenticated users with job configuration permission to gain privileges and execute arbitrary code on the master via unspecified vectors. This is docu...
Fedora Update for jenkins-executable-war FEDORA-2015-5430
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for jenkins-script-security-plugin FEDORA-2015-5643
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for groovy-sandbox FEDORA-2015-5643
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : jenkins-matrix-project-plugin-1.4.1-1.fc22 / jenkins-script-security-plugin-1.13-2.fc22 / etc (2015-5643)
Fix CVE-2015-1806 SECURITY-125 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 22 : jenkins-1.606-1.fc22 / jenkins-executable-war-1.29-4.fc22 / jffi-1.2.7-5.fc22 (2015-5430)
Security fix for CVE-2015-1806, CVE-2015-1807, CVE-2015-1813, CVE-2015-1812, CVE-2015-1810, CVE-2015-1808, CVE-2015-1809, CVE-2015-1814, CVE-2015-1811 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted...
Fedora 21 : jenkins-1.590-3.fc21 (2015-5466)
Security fix for CVE-2015-1806, CVE-2015-1807, CVE-2015-1813, CVE-2015-1812, CVE-2015-1810, CVE-2015-1808, CVE-2015-1809, CVE-2015-1814, CVE-2015-1811 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted...
Fedora 21 : jenkins-script-security-plugin-1.13-2.fc21 / groovy-sandbox-1.8-1.fc21 / etc (2015-5637)
Fix CVE-2015-1806 SECURITY-125 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora Update for jenkins FEDORA-2015-5466
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for jenkins-matrix-project-plugin FEDORA-2015-5637
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...