Lucene search
K

35 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:49 a.m.9 views

CVE-2022-27208

Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows users with Credentials/Create permission to read arbitrary files on the Jenkins controller...

6.5CVSS6.6AI score0.01764EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3783

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.01213EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.27 views

EUVD-2022-3680

Malicious code in bioql PyPI...

9.9CVSS8.8AI score0.01205EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-3862

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.01134EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-3821

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.01401EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-1395

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00491EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5292

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.01268EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 9:31 p.m.11 views

CVE-2021-21661

Jenkins Kubernetes CLI Plugin 1.10.0 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4.3CVSS6.4AI score0.0164EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:42 a.m.26 views

CVE-2019-10417

Jenkins Kubernetes :: Pipeline :: Kubernetes Steps Plugin provides a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection...

9.9CVSS6.9AI score0.01205EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:30 a.m.27 views

CVE-2019-10418

Jenkins Kubernetes :: Pipeline :: Arquillian Steps Plugin provides a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection...

9.9CVSS6.9AI score0.01205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/12 5:5 p.m.7 views

CVE-2023-30513

Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask i.e., replace with asterisks credentials in the build log when push mode for durable task logging is enabled...

6.7AI score0.00491EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/04/12 12:0 a.m.8 views

Jenkins Plugin Kubernetes 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

7.5CVSS7.2AI score0.00491EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/01/24 12:0 a.m.5 views

CVE-2023-24425

Jenkins Kubernetes Credentials Provider Plugin 1.208.v128ee9800c04 and earlier does not set the appropriate context for Kubernetes credentials lookup, allowing attackers with Item/Configure permission to access and potentially capture Kubernetes credentials they are not entitled to...

7AI score0.00821EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/24 5:22 p.m.37 views

RCE vulnerability in ElasticBox Jenkins Kubernetes CI/CD Plugin

ElasticBox Jenkins Kubernetes CI/CD Plugin 1.3 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types. This results in a remote code execution RCE vulnerability exploitable by users able to provide YAML input files to ElasticBox Jenkins Kubernetes CI/CD...

8.8CVSS8.9AI score0.02282EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/05/14 3:13 a.m.28 views

GHSA-V67X-GPG7-MWV3 Exposure of Sensitive Information in Jenkins Kubernetes Plugin

A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being written to logs...

6.5CVSS6.2AI score0.01268EPSS
Exploits0References4
CNVD
CNVD
added 2022/03/17 12:0 a.m.34 views

Jenkins Kubernetes Continuous Deploy Plugin has an unspecified vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. The vulnerability can be exploited by an attacker with Overall/Read privilege...

6.5CVSS2.5AI score0.00887EPSS
Exploits0References1
NVD
NVD
added 2022/03/15 5:15 p.m.23 views

CVE-2022-27209

A missing permission check in Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

6.5CVSS0.00887EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/01/20 4:38 a.m.3 views

jenkins-2-plugins/kubernetes: Missing permission check in Kubernetes Plugin allows enumerating credentials IDs

A missing/An incorrect permission check in Jenkins Kubernetes Plugin 1.27.3 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4.3CVSS5.8AI score0.01134EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/01/18 4:4 p.m.4 views

jenkins-2-plugins/kubernetes: Missing permission check in Kubernetes Plugin allows listing pod templates

A missing permission check in Jenkins Kubernetes Plugin 1.27.3 and earlier allows attackers with Overall/Read permission to list global pod template names...

4.3CVSS5.8AI score0.01144EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2020/11/09 2:29 p.m.25 views

CVE-2020-2309

A missing/An incorrect permission check in Jenkins Kubernetes Plugin 1.27.3 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4.3CVSS4.6AI score0.01134EPSS
Exploits0References4
Rows per page
Query Builder