Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.41 views

RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2023:3198)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3198 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...

9.9CVSS8.1AI score0.99931EPSS
Exploits56References48
Tenable Nessus
Tenable Nessus
added 2024/04/23 12:0 a.m.41 views

RHEL 8 : OpenShift Container Platform 4.9.56 (RHSA-2023:0777)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0777 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

9.9CVSS8AI score0.99615EPSS
Exploits14References56
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.50 views

RHCOS 4 : OpenShift Container Platform 4.8.56 (RHSA-2023:0017)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0017 advisory. - http2-server: Invalid HTTP/2 requests cause DoS CVE-2022-2048 - Libraries: Untrusted users can modify some Pipeline libraries in...

8.8CVSS6.8AI score0.77007EPSS
Exploits0References34
RedhatCVE
RedhatCVE
added 2022/08/19 4:38 a.m.49 views

CVE-2022-30954

Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server...

6.5CVSS2.3AI score0.00835EPSS
Exploits0References4
NVD
NVD
added 2022/05/17 3:15 p.m.16 views

CVE-2022-30954

Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server...

6.5CVSS0.00835EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/17 3:15 p.m.3 views

CVE-2022-30954

Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server...

6.5CVSS6.6AI score0.00835EPSS
Exploits0References3
CVE
CVE
added 2022/05/17 2:6 p.m.180 views

CVE-2022-30954

CVE-2022-30954 affects Jenkins Blue Ocean Plugin up to version 1.25.3 and earlier, with a weakness in several HTTP endpoints that fails permission checks. This allows attackers with Overall/Read permission to connect to an attacker-controlled HTTP server. Connected advisories (e.g., RHSA-2023 ent...

6.5CVSS6.3AI score0.00835EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder