Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:16 p.m.10 views

CVE-2018-1000607

A arbitrary file write vulnerability exists in Jenkins Fortify CloudScan Plugin 1.5.1 and earlier in ArchiveUtil.java that allows attackers able to control rulepack zip file contents to overwrite any file on the Jenkins master file system, only limited by the permissions of the user the Jenkins...

6.5CVSS6.8AI score0.00852EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3145

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00852EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/05/14 3:5 a.m.17 views

Arbitrary file write vulnerability in Jenkins Fortify CloudScan Plugin

A arbitrary file write vulnerability exists in Jenkins Fortify CloudScan Plugin 1.5.1 and earlier in ArchiveUtil.java that allows attackers able to control rulepack zip file contents to overwrite any file on the Jenkins master file system, only limited by the permissions of the user the Jenkins...

6.5CVSS6.8AI score0.00852EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/05/14 3:5 a.m.76 views

GHSA-8864-PWHG-3MP2 Arbitrary file write vulnerability in Jenkins Fortify CloudScan Plugin

A arbitrary file write vulnerability exists in Jenkins Fortify CloudScan Plugin 1.5.1 and earlier in ArchiveUtil.java that allows attackers able to control rulepack zip file contents to overwrite any file on the Jenkins master file system, only limited by the permissions of the user the Jenkins...

6.5CVSS6.4AI score0.00852EPSS
Exploits0References2
CNVD
CNVD
added 2018/07/09 12:0 a.m.4 views

CloudBees Jenkins Fortify CloudScan Plugin Arbitrary File Write Vulnerability

CloudBees Jenkins formerly known as Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools , which is mainly used to monitor the continuous software release/testing projects and some of the timed execution of the task . Fortify CloudScan...

6.5CVSS6.7AI score0.00852EPSS
Exploits0References1
NVD
NVD
added 2018/06/26 5:29 p.m.29 views

CVE-2018-1000607

A arbitrary file write vulnerability exists in Jenkins Fortify CloudScan Plugin 1.5.1 and earlier in ArchiveUtil.java that allows attackers able to control rulepack zip file contents to overwrite any file on the Jenkins master file system, only limited by the permissions of the user the Jenkins...

6.5CVSS6.5AI score0.00852EPSS
Exploits0References1
OSV
OSV
added 2018/06/26 5:29 p.m.20 views

CVE-2018-1000607

A arbitrary file write vulnerability exists in Jenkins Fortify CloudScan Plugin 1.5.1 and earlier in ArchiveUtil.java that allows attackers able to control rulepack zip file contents to overwrite any file on the Jenkins master file system, only limited by the permissions of the user the Jenkins...

6.5CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added 2018/06/26 5:0 p.m.29 views

CVE-2018-1000607

A arbitrary file write vulnerability exists in Jenkins Fortify CloudScan Plugin 1.5.1 and earlier in ArchiveUtil.java that allows attackers able to control rulepack zip file contents to overwrite any file on the Jenkins master file system, only limited by the permissions of the user the Jenkins...

6.5AI score0.00852EPSS
Exploits0References1
CVE
CVE
added 2018/06/26 5:0 p.m.53 views

CVE-2018-1000607

CVE-2018-1000607 affects Jenkins Fortify CloudScan Plugin (versions 1.5.1 and earlier). The flaw resides in ArchiveUtil.java and allows an attacker who can influence the contents of a rulepack ZIP to overwrite arbitrary files on the Jenkins master filesystem, limited by the master process user pe...

6.5CVSS6.4AI score0.00852EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2018/06/25 12:31 p.m.3 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview org.jenkins-ci.plugins:fortify-cloudscan-jenkins-plugin allows an organization to host their own internal cloud-based infrastructure of Static Code Analyzer SCA machines that are distributed jobs by a centralized controller and optionally integrated with Software Security Center SSC...

6.5CVSS7.8AI score0.00852EPSS
Exploits0References2
Rows per page
Query Builder