Lucene search
K

12 matches found

RedHat Linux
RedHat Linux
added 2024/06/05 2:47 p.m.52 views

Important: Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 Openshift Jenkins security update

An update for OpenShift Jenkins is now available for Red Hat Product OCP Tools 4.12. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.3AI score0.93305EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.44 views

RHEL 8 : Red Hat Product OCP Tools 4.12 Openshift Jenkins (RHSA-2024:3635)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3635 advisory. Jenkins is a continuous integration server that monitors the execution of recurring jobs, such as software builds or cron jobs. Security...

9.8CVSS7.7AI score0.93305EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.64 views

RHEL 8 : Red Hat Product OCP Tools 4.14 OpenShift Jenkins (RHSA-2024:3634)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3634 advisory. Jenkins is a continuous integration server that monitors the execution of recurring jobs, such as software builds or cron jobs. Security...

9.8CVSS7.7AI score0.93305EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.49 views

RHEL 8 : Red Hat Product OCP Tools 4.13 OpenShift Jenkins (RHSA-2024:3636)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3636 advisory. Jenkins is a continuous integration server that monitors the execution of recurring jobs, such as software builds or cron jobs. Security...

9.8CVSS7.7AI score0.93305EPSS
Exploits4References18
RedhatCVE
RedhatCVE
added 2024/05/03 8:53 a.m.39 views

CVE-2024-34145

A sandbox bypass vulnerability was found in the Jenkins Script Security Plugin within the sandbox-defined classes, enabling the circumvention of security restrictions. This flaw allows authenticated attackers to define and execute sandboxed scripts, including Pipelines, bypassing sandbox protecti...

8.8CVSS7.5AI score0.01002EPSS
Exploits0References5
Chainguard
Chainguard
added 2024/05/02 2:15 p.m.43 views

CVE-2024-34145 vulnerabilities

Vulnerabilities for packages: jenkins...

8.8CVSS7.3AI score0.01002EPSS
Exploits0
Wolfi
Wolfi
added 2024/05/02 2:15 p.m.145 views

CVE-2024-34145 vulnerabilities

Vulnerabilities for packages: jenkins...

8.8CVSS7.5AI score0.01002EPSS
Exploits0
NVD
NVD
added 2024/05/02 2:15 p.m.26 views

CVE-2024-34145

A sandbox bypass vulnerability involving sandbox-defined classes that shadow specific non-sandbox-defined classes in Jenkins Script Security Plugin 1335.vf07d9ce377ae and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox...

8.8CVSS7AI score0.01002EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/02 1:28 p.m.63 views

CVE-2024-34145

A sandbox bypass vulnerability involving sandbox-defined classes that shadow specific non-sandbox-defined classes in Jenkins Script Security Plugin 1335.vf07d9ce377ae and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox...

7.4AI score0.01002EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/02 1:28 p.m.25 views

CVE-2024-34145

A sandbox bypass vulnerability involving sandbox-defined classes that shadow specific non-sandbox-defined classes in Jenkins Script Security Plugin 1335.vf07d9ce377ae and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox...

7.1AI score0.01002EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2024/05/02 1:28 p.m.5 views

CVE-2024-34145

A sandbox bypass vulnerability involving sandbox-defined classes that shadow specific non-sandbox-defined classes in Jenkins Script Security Plugin 1335.vf07d9ce377ae and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox...

8.8CVSS7.9AI score0.01002EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.58 views

Jenkins plugins Multiple Vulnerabilities (2024-05-02)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - High Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are...

9.8CVSS6.9AI score0.48081EPSS
Exploits0References6
Rows per page
Query Builder