11 matches found
RHCOS 2 : Red Hat OpenShift Enterprise 2.2.7 (RHSA-2015:1844)
The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1844 advisory. - jenkins: Combination filter Groovy script unsecured SECURITY-125 CVE-2015-1806 - jenkins: directory traversal from artifacts via...
com.xti.jenkins.plugins:aws-lambda-jenkins-plugin (=0.0.1), org.jenkins-ci.main:jenkins-test-harness (>=1.597 <=1.599) +10 more potentially affected by CVE-2015-1810 via org.jenkins-ci.main:jenkins-core (>=1.597 <=1.599)
org.jenkins-ci.main:jenkins-core MAVEN version =1.597, =1.597, =1.597, =0.0.2, =1.2.0, =0.14.0, =1.0, =1.597, =1.17, =1.0, =1.0.0, =4.0, =4.2 Source cves: CVE-2015-1810 Source advisory: OSV:GHSA-37WM-28RM-56VW...
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1191 more potentially affected by CVE-2015-1810 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.596)
org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =0.9, =1.3, =1.0, =1.0.3, =1.0.0, =1.0, =1.0.0, =2.2.0, =1.0-beta-1, =4.18 - com.boxuk.jenkins:jslint =0.7.4 and more Source cves: CVE-2015-1810 Source advisory: OSV:GHSA-37WM-28RM-56VW...
Cross-Site Scripting (XSS)
OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...
Path Traversal
OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...
Sensitive Information Disclosure
OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...
CVE-2015-1810
CVE-2015-1810 affects Jenkins/CloudBees Jenkins CI prior to 1.600 and LTS prior to 1.596.1. The HudsonPrivateSecurityRealm class does not restrict access to reserved names when using the Jenkins’ own user database, enabling a remote attacker to gain privileges by creating a reserved name. The iss...
Fedora Update for jenkins-executable-war FEDORA-2015-5430
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : jenkins-1.606-1.fc22 / jenkins-executable-war-1.29-4.fc22 / jffi-1.2.7-5.fc22 (2015-5430)
Security fix for CVE-2015-1806, CVE-2015-1807, CVE-2015-1813, CVE-2015-1812, CVE-2015-1810, CVE-2015-1808, CVE-2015-1809, CVE-2015-1814, CVE-2015-1811 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted...
Fedora 21 : jenkins-1.590-3.fc21 (2015-5466)
Security fix for CVE-2015-1806, CVE-2015-1807, CVE-2015-1813, CVE-2015-1812, CVE-2015-1810, CVE-2015-1808, CVE-2015-1809, CVE-2015-1814, CVE-2015-1811 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted...
Fedora Update for jenkins FEDORA-2015-5466
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...