Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-2195

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00524EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-2377

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00765EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-0977

Malicious code in bioql PyPI...

4.2CVSS6.3AI score0.00337EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-1044

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00417EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 9:55 a.m.12 views

CVE-2024-28162

In Jenkins Delphix Plugin 3.0.1 through 3.1.0 both inclusive a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower DCT connections fails to take effect until Jenkins is restarted when switching from disabled validation to enabled validation...

4.2CVSS6.7AI score0.00337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:55 a.m.12 views

CVE-2024-28161

In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower DCT connections is disabled by default...

5.3CVSS6.7AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:25 a.m.12 views

CVE-2019-10453

Jenkins Delphix Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

7.8CVSS6.7AI score0.0027EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/03/06 6:30 p.m.44 views

Jenkins Delphix Plugin has SSL/TLS certificate validation disabled by default

In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower DCT connections is disabled by default...

5.3CVSS6.8AI score0.00417EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/03/06 5:15 p.m.9 views

CVE-2024-28162

In Jenkins Delphix Plugin 3.0.1 through 3.1.0 both inclusive a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower DCT connections fails to take effect until Jenkins is restarted when switching from disabled validation to enabled validation...

4.2CVSS6.6AI score
Exploits0References2
OSV
OSV
added 2024/03/06 5:15 p.m.7 views

CVE-2024-28161

In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower DCT connections is disabled by default...

5.3CVSS6.6AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/06 5:2 p.m.15 views

CVE-2024-28161

In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower DCT connections is disabled by default...

6.7AI score0.00417EPSS
Exploits0References2
CVE
CVE
added 2024/03/06 5:2 p.m.88 views

CVE-2024-28161

CVE-2024-28161 (Jenkins Delphix Plugin 3.0.1) : The issue is a misconfiguration where a global option to enable/disable SSL/TLS certificate validation for Data Control Tower (DCT) connections is disabled by default. This creates a potential for connections to proceed without proper certificate va...

5.3CVSS6.5AI score0.00417EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/06 12:0 a.m.10 views

PT-2024-22308 · Jenkins · Jenkins Delphix Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Delphix Plugin versions 3.0.1 through 3.1.0 Description: The global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower DCT connections does not take effect until Jenkins is restarted...

4.2CVSS6.2AI score0.00337EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2023/08/16 2:32 p.m.28 views

CVE-2023-40345

Jenkins Delphix Plugin 3.0.2 and earlier does not set the appropriate context for credentials lookup, allowing attackers with Overall/Read permission to access and capture credentials they are not entitled to...

6.5CVSS6.9AI score0.00765EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/08/16 12:0 a.m.7 views

PT-2023-27403 · Jenkins · Jenkins Delphix Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Delphix Plugin versions 3.0.2 and earlier Description: The issue allows attackers with Overall/Read permission to access and capture credentials they are not entitled to, due to the plugin not setting the appropriate context for...

6.5CVSS6.3AI score0.00765EPSS
Exploits0References12
NVD
NVD
added 2019/10/16 2:15 p.m.27 views

CVE-2019-10453

Jenkins Delphix Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

7.8CVSS7.6AI score0.0027EPSS
Exploits0References2
Prion
Prion
added 2019/10/16 2:15 p.m.16 views

Design/Logic Flaw

Jenkins Delphix Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

2.1CVSS7.5AI score0.0027EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/10/16 1:0 p.m.29 views

CVE-2019-10453

Jenkins Delphix Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

7.6AI score0.0027EPSS
Exploits0References2
Rows per page
Query Builder