CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2014-4577

Malware in sbrugna...

9.8CVSS8.2AI score0.02081EPSS

Exploits1References4

RedhatCVE•added 2025/05/22 10:26 a.m.•5 views

CVE-2019-10369

A missing permission check in Jenkins JClouds Plugin 2.14 and earlier in BlobStoreProfile.DescriptorImpldoTestConnection and JCloudsCloud.DescriptorImpldoTestConnection allowed users with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained...

6.5CVSS6.4AI score0.00974EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:25 a.m.•5 views

CVE-2019-10368

A cross-site request forgery vulnerability in Jenkins JClouds Plugin 2.14 and earlier in BlobStoreProfile.DescriptorImpldoTestConnection and JCloudsCloud.DescriptorImpldoTestConnection allowed users with Overall/Read access to connect to an attacker-specified URL using attacker-specified...

8.8CVSS6.4AI score0.008EPSS

Exploits0References1

vulnersOsv•added 2022/05/24 5:45 p.m.•5 views

com.github.kostyasha.yet-another-docker:yet-another-docker-plugin (=0.2.0), org.jenkins-ci.plugins.nodesharing:node-sharing-executor (>=2.0.0 <=2.0.3) +3 more potentially affected by CVE-2021-21631 via org.jenkins-ci.plugins:cloud-stats (>=0.1 <=0.23)

org.jenkins-ci.plugins:cloud-stats MAVEN version =0.1, =2.0.0, =0.4.8, =2.15, =2.6, =2.42 Source cves: CVE-2021-21631 Source advisory: OSV:GHSA-XV69-6RF3-W5G2...

4.3CVSS5.5AI score0.00801EPSS

Exploits0

OSV•added 2022/05/24 4:52 p.m.•16 views

GHSA-87HX-Q65G-R35X Jenkins JClouds Plugin cross-site request forgery vulnerability

Jenkins JClouds Plugin did not perform permission checks on a method implementing form validation. This allowed users with Overall/Read access to Jenkins to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored ...

4.2CVSS8.6AI score0.008EPSS

Exploits0References6

OSV•added 2022/05/24 4:52 p.m.•13 views

GHSA-7WXC-7QRG-RG6W Jenkins JClouds Plugin missing permission check

4.2CVSS6.3AI score0.00974EPSS

Exploits0References9

Github Security Blog•added 2022/05/24 4:52 p.m.•12 views

Jenkins JClouds Plugin cross-site request forgery vulnerability

8.8CVSS6.5AI score0.008EPSS

Exploits0References7Affected Software1

Github Security Blog•added 2022/05/24 4:52 p.m.•21 views

Jenkins JClouds Plugin missing permission check

6.5CVSS6.5AI score0.00974EPSS

Exploits0References10Affected Software1

vulnersOsv•added 2022/05/17 5:4 a.m.•6 views

com.github.ptgoetz:whirr-storm (=0.1.0), com.proofpoint.cloudmanagement.service:cloud-management (>=1.2 <=1.3) +40 more potentially affected by CVE-2013-4766 via org.jclouds.api:eucalyptus (>=1.0-beta-9b <=1.5.9)

org.jclouds.api:eucalyptus MAVEN version =1.0-beta-9b, =1.2, =0.4.0, =0.4.0, =0.4.0, =0.4.0, =0.5.0, =0.4.0, =0.4.0, =0.4.0, =0.5.0, =0.4.0, =0.4.0, =0.4.0, =0.5.0-rc.2 and more Source cves: CVE-2013-4766 Source advisory: OSV:GHSA-F5HM-H272-2QWM...

4.3CVSS5.8AI score0.01151EPSS

Exploits0

vulnersOsv•added 2022/05/13 1:36 a.m.•4 views

com.cloudcoreo.plugins:cloudcoreo-deploytime (>=0.1.0 <=0.2.3), com.github.kostyasha.yet-another-docker:yet-another-docker-plugin (>=0.1.0 <=0.1.3) +7 more potentially affected by CVE-2017-2648 via org.jenkins-ci.plugins:ssh-slaves (>=1.10 <=1.13)

org.jenkins-ci.plugins:ssh-slaves MAVEN version =1.10, =0.1.0, =0.1.0, =1.2.8, =2.0.0, =1.3, =1.2.0, =2.9, =2.11, =2.8, =2.19 Source cves: CVE-2017-2648 Source advisory: OSV:GHSA-X654-4WJH-74Q6...

6.8CVSS6.6AI score0.01423EPSS

Exploits0

NVD•added 2020/02/18 2:15 p.m.•28 views

CVE-2014-4651

It was found that the jclouds scriptbuilder Statements class wrote a temporary file to a predictable location. An attacker could use this flaw to access sensitive data, cause a denial of service, or perform other attacks...

9.8CVSS9.3AI score0.02081EPSS

Exploits1References2

Cvelist•added 2020/02/18 1:6 p.m.•26 views

CVE-2014-4651

9.4AI score0.02081EPSS

Exploits1References2

CVE•added 2020/02/18 1:6 p.m.•73 views

CVE-2014-4651

CVE-2014-4651 affects the jclouds scriptbuilder Statements class, which writes a temporary file to a predictable location. This could allow an attacker to access sensitive data, cause a denial of service, or perform other attacks. Public details include a high to critical impact (CVSS v2 base 7.5...

9.8CVSS9.3AI score0.02081EPSS

Exploits1References2Affected Software1

CNVD•added 2019/08/15 12:0 a.m.•3 views

CloudBees Jenkins JClouds Plugin Authorization Issues Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . An authorization issue vulnerability exists in CloudBees Jenkins JClouds Plugin, which can be exploited by an attacker to gain access to credentials stored in...

6.5CVSS7AI score0.00974EPSS

Exploits0References1

CNVD•added 2019/08/15 12:0 a.m.•3 views

CloudBees Jenkins JClouds Plugin Cross-Site Request Forgery Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . A cross-site request forgery vulnerability exists in CloudBees Jenkins JClouds Plugin, which can be exploited by an attacker to send unintended requests to the...

8.8CVSS6.9AI score0.008EPSS

Exploits0References1

NVD•added 2019/08/07 3:15 p.m.•18 views

CVE-2019-10369

6.5CVSS6.4AI score0.00974EPSS

Exploits0References5

NVD•added 2019/08/07 3:15 p.m.•23 views

CVE-2019-10368

8.8CVSS8.6AI score0.008EPSS

Exploits0References5

OSV•added 2019/08/07 3:15 p.m.•16 views

CVE-2019-10369