Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:13 a.m.3 views

SUSE CVE-2015-7537

Cross-site request forgery CSRF vulnerability in Jenkins before 1.640 and LTS before 1.625.2 allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via vectors related to the HTTP GET method...

8.8CVSS9.2AI score0.02395EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2022/05/13 1:30 a.m.7 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1304 more potentially affected by CVE-2015-7537 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.625.1)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =0.9, =1.3, =1.0, =1.0, =2.2.1, =1.0.3, =1.0.0, =1.0, =1.0.0, =1.2.0 and more Source cves: CVE-2015-7537 Source advisory: SNYK:JAVA-ORGJENKINSCIMAIN-9404629...

8.8CVSS7.2AI score0.02395EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/13 1:30 a.m.3 views

RPD:bmc-rpd (=1.1), com.piketec.jenkins.plugins:piketec-tpt (=6.3) +19 more potentially affected by CVE-2015-7537 via org.jenkins-ci.main:jenkins-core (>=1.626 <=1.639)

org.jenkins-ci.main:jenkins-core MAVEN version =1.626, =0.3, =1.2, =1.1.2, =1.626, =1.626, =0.2.0, =1.0, =1.1.0, =0.1, =0.2, =0.1, =0.3 - org.jenkins-ci.plugins:icn-plugin-loader =1.0 and more Source cves: CVE-2015-7537 Source advisory: OSV:GHSA-3VHR-F5XR-8VPX...

8.8CVSS7.2AI score0.02395EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/13 1:30 a.m.5 views

RPD:bmc-rpd (=1.1), com.piketec.jenkins.plugins:piketec-tpt (=6.3) +19 more potentially affected by CVE-2015-7537 via org.jenkins-ci.main:jenkins-core (>=1.626 <=1.639)

org.jenkins-ci.main:jenkins-core MAVEN version =1.626, =0.3, =1.2, =1.1.2, =1.626, =1.626, =0.2.0, =1.0, =1.1.0, =0.1, =0.2, =0.1, =0.3 - org.jenkins-ci.plugins:icn-plugin-loader =1.0 and more Source cves: CVE-2015-7537 Source advisory: SNYK:JAVA-ORGJENKINSCIMAIN-9404629...

8.8CVSS7.2AI score0.02395EPSS
Exploits0
Veracode
Veracode
added 2019/05/02 5:21 a.m.49 views

Cross-Site Scripting (XSS)

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Veracode
Veracode
added 2019/05/02 5:21 a.m.41 views

Path Traversal

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Veracode
Veracode
added 2019/05/02 5:21 a.m.36 views

Sensitive Information Disclosure

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.30 views

Fedora 22 : jenkins-1.609.3-5.fc22 (2015-938c70c840)

Security update, fixes: CVE-2015-7536 SECURITY-95, CVE-2015-7537 SECURITY-225, CVE-2015-7538 SECURITY-233, CVE-2015-7539 SECURITY-234 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

8.8CVSS6.8AI score0.02395EPSS
Exploits0References1
NVD
NVD
added 2016/02/03 6:59 p.m.25 views

CVE-2015-7537

Cross-site request forgery CSRF vulnerability in Jenkins before 1.640 and LTS before 1.625.2 allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via vectors related to the HTTP GET method...

8.8CVSS9.2AI score0.02395EPSS
Exploits0References3
CVE
CVE
added 2016/02/03 3:0 p.m.76 views

CVE-2015-7537

CVE-2015-7537 affects Jenkins, described as a CSRF vulnerability that could allow an attacker to hijack admin authentication via HTTP GET. Affected versions: Jenkins before 1.640 and LTS before 1.625.2. Mitigation: upgrade to Jenkins 1.640 or newer or LTS 1.625.2 or newer. The connected advisory ...

8.8CVSS8.4AI score0.02395EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder