Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.36 views

RHEL 8 : OpenShift Container Platform 4.10.52 (RHSA-2023:0697)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0697 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

9.8CVSS7.8AI score0.99615EPSS
Exploits8References6
Tenable Nessus
Tenable Nessus
added 2024/04/23 12:0 a.m.38 views

RHEL 8 : OpenShift Container Platform 4.9.56 (RHSA-2023:0777)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0777 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

9.9CVSS8AI score0.99615EPSS
Exploits12References56
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.50 views

RHCOS 4 : OpenShift Container Platform 4.10.52 (RHSA-2023:0697)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0697 advisory. - SnakeYaml: Constructor Deserialization Remote Code Execution CVE-2022-1471 - jenkins: Observable timing discrepancy allows...

9.8CVSS7.1AI score0.99615EPSS
Exploits8References6
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.46 views

RHCOS 4 : OpenShift Container Platform 4.8.56 (RHSA-2023:0017)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0017 advisory. - http2-server: Invalid HTTP/2 requests cause DoS CVE-2022-2048 - Libraries: Untrusted users can modify some Pipeline libraries in...

8.8CVSS6.8AI score0.77007EPSS
Exploits0References34
vulnersOsv
vulnersOsv
added 2022/06/24 12:0 a.m.3 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1602 more potentially affected by CVE-2022-34174 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.33)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2022-34174 Source advisory: OSV:GHSA-9GRJ-J43M-MJQR...

7.5CVSS7.1AI score0.01229EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/06/24 12:0 a.m.22 views

Jenkins < 2.356, < 2.332.4 LTS Information Disclosure Vulnerability (SECURITY-2566) - Windows

Jenkins is prone to an information disclosure vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.5CVSS7.3AI score0.01229EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/06/24 12:0 a.m.20 views

Jenkins < 2.356, < 2.332.4 LTS Information Disclosure Vulnerability (SECURITY-2566) - Linux

Jenkins is prone to an information disclosure vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.5CVSS7.3AI score0.01229EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/06/23 12:0 a.m.54 views

FreeBSD : jenkins -- multiple vulnerabilities (25be46f0-f25d-11ec-b62a-00e081b7aa2d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 25be46f0-f25d-11ec-b62a-00e081b7aa2d advisory. - In Jenkins 2.320 through 2.355 both inclusive and LTS 2.332.1 through LTS 2.332.3 both...

7.5CVSS6.1AI score0.01361EPSS
Exploits0References8
CVE
CVE
added 2022/06/22 2:40 p.m.217 views

CVE-2022-34174

CVE-2022-34174 affects Jenkins 2.355 and earlier (and LTS 2.332.3 and earlier) where an observable timing discrepancy on the login form can distinguish between login attempts with an invalid username versus a valid username and wrong password when using the Jenkins user database security realm; t...

7.5CVSS7.4AI score0.01229EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2022/06/22 2:40 p.m.65 views

CVE-2022-34174

In Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login form allows distinguishing between login attempts with an invalid username, and login attempts with a valid username and wrong password, when using the Jenkins user database security realm...

7.5CVSS7.6AI score0.01229EPSS
Exploits0
Rows per page
Query Builder