Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-3692

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.01215EPSS
Exploits0References8
Snyk
Snyk
added 2025/04/19 1:42 a.m.2 views

Insecure Randomness

Overview Affected versions of this package are vulnerable to Insecure Randomness due to its use of the hexoid function in the generation of fingerprint IDs. Remediation A fix was pushed into the master branch but not yet published. References - GitHub Commit - Vulnerability Report Credit: ZAST.AI...

8.8CVSS6.9AI score0.0036EPSS
Exploits1References2
CNVD
CNVD
added 2021/01/18 12:0 a.m.3 views

Cloudbees Jenkins and LTS Input Validation Error Vulnerability

Cloudbees Jenkins Hudson Labs is the United States CloudBees Cloudbees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . LTS is a long-term support for...

4.3CVSS6.3AI score0.01215EPSS
Exploits0References1
Veracode
Veracode
added 2021/01/14 4:24 p.m.7 views

Authorization Bypass

Jenkins is vulnerable to authorization bypass. Improperly validation of the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...

4.3CVSS6.5AI score0.01215EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2021/01/13 4:15 p.m.13 views

CVE-2021-21606

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...

4.3CVSS4.5AI score0.01215EPSS
Exploits0References1
Prion
Prion
added 2021/01/13 4:15 p.m.31 views

Path traversal

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...

4CVSS5.6AI score0.01215EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/01/13 3:55 p.m.24 views

CVE-2021-21606

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...

6AI score0.01215EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2021/01/13 3:55 p.m.30 views

CVE-2021-21606

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...

4.3CVSS5.8AI score0.01215EPSS
Exploits0
CNNVD
CNNVD
added 2021/01/13 12:0 a.m.6 views

Cloudbees Jenkins 输入验证错误漏洞

Cloudbees Jenkins Hudson Labs is the United States CloudBees Cloudbees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . LTS is a long-term support for...

4.3CVSS5.8AI score0.01215EPSS
Exploits0References8
Rows per page
Query Builder