Lucene search
K

10 matches found

vulnersOsv
vulnersOsv
added 2022/05/13 1:30 a.m.6 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1304 more potentially affected by CVE-2015-5324 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.625.1)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =0.9, =1.3, =1.0, =1.0, =2.2.1, =1.0.3, =1.0.0, =1.0, =1.0.0, =1.2.0 and more Source cves: CVE-2015-5324 Source advisory: OSV:GHSA-5XMF-9VGR-53MJ...

5CVSS7.2AI score0.02064EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/13 1:30 a.m.5 views

com.piketec.jenkins.plugins:piketec-tpt (=6.3), io.jenkins.plugins:aws-lambda-cloud (>=0.3 <=0.4) +13 more potentially affected by CVE-2015-5324 via org.jenkins-ci.main:jenkins-core (>=1.626 <=1.637)

org.jenkins-ci.main:jenkins-core MAVEN version =1.626, =0.3, =1.2, =1.1.2, =1.626, =1.626, =1.1.0, =0.1, =0.2, =0.1, =2.4, =1.626, =1.21, =1.0.3, =1.0, =2.0.27 Source cves: CVE-2015-5324 Source advisory: OSV:GHSA-5XMF-9VGR-53MJ...

5CVSS7.2AI score0.02064EPSS
Exploits0
Veracode
Veracode
added 2019/05/02 5:21 a.m.49 views

Cross-Site Scripting (XSS)

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Veracode
Veracode
added 2019/05/02 5:21 a.m.41 views

Path Traversal

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Veracode
Veracode
added 2019/05/02 5:21 a.m.36 views

Sensitive Information Disclosure

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.30 views

Fedora 22 : jenkins-1.609.3-4.fc22 (2015-89468612f5)

Security update, fixes: CVE-2015-5317 SECURITY-153, CVE-2015-5319 SECURITY-173, CVE-2015-5324 SECURITY-186, CVE-2015-5321 SECURITY-192, CVE-2015-5322 SECURITY-195, CVE-2015-5323 SECURITY-200, CVE-2015-5326 SECURITY-214 Note that Tenable Network Security has extracted the preceding description blo...

7.5CVSS8.1AI score0.22429EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.44 views

Fedora 23 : jenkins-1.625.2-2.fc23 / jenkins-remoting-2.53-1.fc23 (2015-d02feebd15)

Update to 1.625.2 - Resolves: CVE-2015-5317, CVE-2015-5318, CVE-2015-5319, CVE-2015-5320, CVE-2015-5324, CVE-2015-5321, CVE-2015-5322, CVE-2015-5323, CVE-2015-5325, CVE-2015-5326, SECURITY-218 Note that Tenable Network Security has extracted the preceding description block directly from the Fedor...

7.5CVSS8.1AI score0.22429EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/11/25 8:59 p.m.29 views

CVE-2015-5324

Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api...

5CVSS7.2AI score0.02064EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/11/25 8:0 p.m.31 views

CVE-2015-5324

Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api...

9.1AI score0.02064EPSS
Exploits0References3
CVE
CVE
added 2015/11/25 8:0 p.m.80 views

CVE-2015-5324

Jenkins vulnerability CVE-2015-5324 affects Jenkins core prior to 1.638 and LTS prior to 1.625.2, enabling remote attackers to disclose sensitive information by directly requesting /queue/api. The issue is an information-disclosure flaw in the queue API handling, not a code-execution vector. Affe...

5CVSS8AI score0.02064EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder