Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2022/06/24 12:0 a.m.22 views

Jenkins 2.335 < 2.356 Information Disclosure Vulnerability (SECURITY-2777) - Linux

Jenkins is prone to an information disclosure vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.5CVSS7.3AI score0.01297EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/06/24 12:0 a.m.24 views

Jenkins 2.335 < 2.356 Information Disclosure Vulnerability (SECURITY-2777) - Windows

Jenkins is prone to an information disclosure vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.5CVSS7.3AI score0.01297EPSS
Exploits0References1
Circl
Circl
added 2022/06/23 8:35 p.m.7 views

CVE-2022-34175

creationtimestamp| type| source ---|---|--- 2022-06-23 20:35:40+00:00| seen| https://t.me/cibsecurity/45001...

7.5CVSS7.3AI score0.01297EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2022/06/23 5:15 p.m.42 views

CVE-2022-34175

Jenkins 2.335 through 2.355 both inclusive allows attackers in some cases to bypass a protection mechanism, thereby directly accessing some view fragments containing sensitive information, bypassing any permission checks in the corresponding view...

7.5CVSS4.4AI score0.01297EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/06/23 12:0 a.m.54 views

FreeBSD : jenkins -- multiple vulnerabilities (25be46f0-f25d-11ec-b62a-00e081b7aa2d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 25be46f0-f25d-11ec-b62a-00e081b7aa2d advisory. - In Jenkins 2.320 through 2.355 both inclusive and LTS 2.332.1 through LTS 2.332.3 both...

7.5CVSS6.1AI score0.01361EPSS
Exploits0References8
Cvelist
Cvelist
added 2022/06/22 2:40 p.m.19 views

CVE-2022-34175

Jenkins 2.335 through 2.355 both inclusive allows attackers in some cases to bypass a protection mechanism, thereby directly accessing some view fragments containing sensitive information, bypassing any permission checks in the corresponding view...

7.7AI score0.01297EPSS
Exploits0References1
CVE
CVE
added 2022/06/22 2:40 p.m.124 views

CVE-2022-34175

Summary (CVE-2022-34175) : Jenkins core versions 2.335–2.355 allow bypassing the protection added for SECURITY-534, enabling direct access to certain view fragments that may contain sensitive information. This occurs when the Stapler-rendered views’ protection is disabled for some views, allowing...

7.5CVSS7.2AI score0.01297EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder