Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-1715

Malicious code in bioql PyPI...

6.8CVSS6.2AI score0.00787EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/05/02 3:30 p.m.34 views

Jenkins Subversion Partial Release Manager Plugin programmatically disables the fix for CVE-2016-3721

Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier programmatically sets the Java system property hudson.model.ParametersAction.keepUndefinedParameters whenever a build is triggered from a release tag with the 'Svn-Partial Release Manager' SCM. Doing so disables the fix for...

6.8CVSS7AI score0.02124EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/05/02 3:30 p.m.34 views

GHSA-PHH3-2P9M-W6J5 Jenkins Subversion Partial Release Manager Plugin programmatically disables the fix for CVE-2016-3721

Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier programmatically sets the Java system property hudson.model.ParametersAction.keepUndefinedParameters whenever a build is triggered from a release tag with the 'Svn-Partial Release Manager' SCM. Doing so disables the fix for...

6.8CVSS4.7AI score0.00787EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/05/02 1:28 p.m.25 views

CVE-2024-34148

Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier programmatically disables the fix for CVE-2016-3721 whenever a build is triggered from a release tag, by setting the Java system property 'hudson.model.ParametersAction.keepUndefinedParameters'...

6.7AI score0.00787EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/02 1:28 p.m.40 views

CVE-2024-34148

Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier programmatically disables the fix for CVE-2016-3721 whenever a build is triggered from a release tag, by setting the Java system property 'hudson.model.ParametersAction.keepUndefinedParameters'...

7AI score0.00787EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2022/05/14 3:57 a.m.4 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1525 more potentially affected by CVE-2016-3721 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.651.1)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.5.0, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2016-3721 Source advisory: OSV:GHSA-QF2H-H3XQ-J93J...

6.5CVSS6.7AI score0.02124EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/14 3:57 a.m.5 views

appscanstandard-integration:ibm-security-appscanstandard-scanner (>=1.0 <=2.8), com.compuware.jenkins:compuware-common-configuration (>=1.0.6 <=1.0.11) +71 more potentially affected by CVE-2016-3721 via org.jenkins-ci.main:jenkins-core (>=2.0 <=2.29)

org.jenkins-ci.main:jenkins-core MAVEN version =2.0, =1.0, =1.0.6, =2.0.0, =2.0, =1.0.2, =1.0.0, =0.1.0, =0.1.0, =2.37.0, =1.2.0, =1.1.0, =0.17, =1.1.7, =1.2, =1.7 and more Source cves: CVE-2016-3721 Source advisory: OSV:GHSA-QF2H-H3XQ-J93J...

6.5CVSS6.7AI score0.02124EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/12/04 12:0 a.m.49 views

RHEL 6 : Red Hat OpenShift Enterprise 2.2.10 (RHSA-2016:1773)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1773 advisory. OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private clou...

10CVSS7.1AI score0.83274EPSS
Exploits32References41
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.35 views

Fedora 24 : jenkins (2016-fd6100dd68)

Security fix for CVE-2016-3721, CVE-2016-3722, CVE-2016-3723, CVE-2016-3724, CVE-2016-3725, CVE-2016-3726, CVE-2016-3727 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean an...

7.4CVSS6.3AI score0.02388EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.30 views

Fedora 22 : jenkins (2016-f7e7a6067d)

Security fix for CVE-2016-3721, CVE-2016-3722, CVE-2016-3723, CVE-2016-3724, CVE-2016-3725, CVE-2016-3726, CVE-2016-3727 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean an...

7.4CVSS6.3AI score0.02388EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.32 views

Fedora 23 : jenkins (2016-9ba53cf8a2)

Security fix for CVE-2016-3721, CVE-2016-3722, CVE-2016-3723, CVE-2016-3724, CVE-2016-3725, CVE-2016-3726, CVE-2016-3727 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean an...

7.4CVSS6.3AI score0.02388EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2016/06/06 7:6 p.m.54 views

Moderate: Red Hat Security Advisory: jenkins security update

An updated Jenkins package and image that includes security fixes are now available for Red Hat OpenShift Enterprise 3.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.4CVSS6.4AI score0.02388EPSS
Exploits1References9
CVE
CVE
added 2016/05/17 12:0 a.m.114 views

CVE-2016-3721

CVE-2016-3721 affects Jenkins core: Jenkins before 2.3 and LTS before 1.651.2 may allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables. Root cause is unsafe handling of environment variables during builds, enabling parameter le...

6.5CVSS6.5AI score0.02124EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/05/12 12:0 a.m.30 views

FreeBSD : jenkins -- multiple vulnerabilities (e387834a-17ef-11e6-9947-7054d2909b71)

Jenkins Security Advisory : DescriptionSECURITY-170 / CVE-2016-3721 Arbitrary build parameters are passed to build scripts as environment variables SECURITY-243 / CVE-2016-3722 Malicious users with multiple user accounts can prevent other users from logging in SECURITY-250 / CVE-2016-3723...

7.4CVSS6.2AI score0.02388EPSS
Exploits1References9
Rows per page
Query Builder