Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:14 a.m.12 views

CVE-2018-1000106

An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overall/Read access to modify the Gerrit configuration in Jenkins...

5.5CVSS6.5AI score0.00908EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/05/13 1:48 a.m.6 views

org.jenkins-ci.plugins:gerrit-verify-status-reporter (>=0.0.2 <=0.0.3), org.jenkins-ci.plugins:msginject (>=0.1.0 <=0.1.1) +1 more potentially affected by CVE-2018-1000106 via com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger (>=2.14.0 <=2.22.0)

com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger MAVEN version =2.14.0, =0.0.2, =0.1.0, =1.0, =2.4.6 Source cves: CVE-2018-1000106 Source advisory: OSV:GHSA-4VF2-CM23-RF4C...

5.5CVSS6AI score0.00908EPSS
Exploits0
Cvelist
Cvelist
added 2018/03/13 1:0 p.m.28 views

CVE-2018-1000106

An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overall/Read access to modify the Gerrit configuration in Jenkins...

5.3AI score0.00908EPSS
Exploits0References1
CVE
CVE
added 2018/03/13 1:0 p.m.60 views

CVE-2018-1000106

CVE-2018-1000106: Affected software is Jenkins Gerrit Trigger Plugin (≤ version 2.27.4). The root cause is an improper authorization flaw in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overall/Read access to modify Jenkins Gerrit configuration. Docum...

5.5CVSS5.3AI score0.00908EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder