Lucene search
+L

9 matches found

vulnersOsv
vulnersOsv
added 2022/05/24 7:19 p.m.5 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1594 more potentially affected by CVE-2021-21696 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.30)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2021-21696 Source advisory: OSV:GHSA-C5R9-RX53-Q3GF...

9.8CVSS7.2AI score0.0232EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/12/02 10:4 p.m.43 views

Important: Red Hat Security Advisory: OpenShift Container Platform 3.11.569 security update

Red Hat OpenShift Container Platform release 3.11.569 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score,...

9.8CVSS7.1AI score0.02451EPSS
Exploits0References22
RedHat Linux
RedHat Linux
added 2021/12/02 6:37 p.m.36 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.6.51 packages and security update

Red Hat OpenShift Container Platform release 4.6.51 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a...

9.8CVSS7.1AI score0.02451EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2021/11/30 9:11 a.m.35 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.8.22 security update

Red Hat OpenShift Container Platform release 4.8.22 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, whic...

9.8CVSS6.8AI score0.02451EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2021/11/05 12:0 a.m.18 views

Jenkins < 2.303.3, < 2.319 Multiple Vulnerabilities - Linux

Jenkins is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.9AI score0.02451EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/11/05 12:0 a.m.30 views

FreeBSD : jenkins -- multiple vulnerabilities (2bf56269-90f8-4a82-b82f-c0e289f2a0dc)

Jenkins Security Advisory : DescriptionCritical SECURITY-2455 / CVE-2021-21685, CVE-2021-21686, CVE-2021-21687, CVE-2021-21688, CVE-2021-21689, CVE-2021-21690, CVE-2021-21691, CVE-2021-21692, CVE-2021-21693, CVE-2021-21694, CVE-2021-21695 Multiple vulnerabilities allow bypassing path filtering of...

9.8CVSS8.2AI score0.02451EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2021/11/04 4:52 p.m.52 views

CVE-2021-21696

An incorrect permissions validation vulnerability was found in Jenkins. An agent process read/write access to the libs/ directory inside build directories when using the FilePath APIs is not limited. This allows attackers in control of agent processes to replace the code of a trusted library with...

9.8CVSS9.2AI score0.0232EPSS
Exploits0References4
CVE
CVE
added 2021/11/04 4:30 p.m.179 views

CVE-2021-21696

CVE-2021-21696 affects Jenkins 2.318 and earlier (including LTS 2.303.2 and earlier). The issue arises because agent processes are allowed read/write access to the libs/ directory inside build directories via FilePath APIs, enabling an attacker controlling the agent to replace a trusted library’s...

9.8CVSS9.4AI score0.0232EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/11/04 4:30 p.m.27 views

CVE-2021-21696

Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not limit agent read/write access to the libs/ directory inside build directories when using the FilePath APIs, allowing attackers in control of agent processes to replace the code of a trusted library with a modified variant. This results i...

9.8AI score0.0232EPSS
Exploits0References2
Rows per page
Query Builder