Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:51 a.m.6 views

CVE-2019-10426

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.5CVSS6.7AI score0.00341EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.28 views

EulerOS 2.0 SP11 : ruby (EulerOS-SA-2024-2594)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Rubygems.org is the Ruby community's gem hosting service. A Gem publisher can cause a Remote DoS when publishing a Gem. This is due to how Ruby read...

6.6CVSS7.2AI score0.02064EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/29 8:18 p.m.54 views

CVE-2024-35221 Denial of service when publishing a package on rubygems.org

Rubygems.org is the Ruby community's gem hosting service. A Gem publisher can cause a Remote DoS when publishing a Gem. This is due to how Ruby reads the Manifest of Gem files when using Gem::Specification.fromyaml. fromyaml makes use of SafeYAML.load which allows YAML aliases inside the YAML-bas...

4.3CVSS4.6AI score0.00494EPSS
Exploits0References3
OSV
OSV
added 2022/05/24 10:0 p.m.6 views

GHSA-6PQM-PP65-MC26 Jenkins Gem Publisher Plugin stores credentials as plaintext

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.5CVSS5.4AI score0.00341EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/24 10:0 p.m.14 views

Jenkins Gem Publisher Plugin stores credentials as plaintext

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.5CVSS5.5AI score0.00341EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2019/10/08 12:0 a.m.2 views

Unspecified Vulnerability in CloudBees Jenkins Gem Publisher Plugin

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Gem Publisher Plugin is used in which a Gem...

5.5CVSS6.8AI score0.00341EPSS
Exploits0References1
OSV
OSV
added 2019/09/25 4:15 p.m.3 views

CVE-2019-10426

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.5CVSS5.8AI score0.00341EPSS
Exploits0References2
NVD
NVD
added 2019/09/25 4:15 p.m.11 views

CVE-2019-10426

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.5CVSS5.5AI score0.00341EPSS
Exploits0References2
Prion
Prion
added 2019/09/25 4:15 p.m.11 views

Design/Logic Flaw

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

2.1CVSS5.4AI score0.00341EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/09/25 3:5 p.m.17 views

CVE-2019-10426

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.4AI score0.00341EPSS
Exploits0References2
CVE
CVE
added 2019/09/25 3:5 p.m.47 views

CVE-2019-10426

CVE-2019-10426 concerns the Jenkins Gem Publisher Plugin. The connected sources confirm the issue: the plugin stores credentials unencrypted in its global configuration file on the Jenkins master, enabling access by users who can read the master file system. The NVD entry lists a CVSS v3.1 base s...

5.5CVSS5.4AI score0.00341EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder