Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5097

Malicious code in bioql PyPI...

8.5CVSS8.6AI score0.01145EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4477

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00836EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-0186

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.0053EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-6275

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00605EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-4758

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01505EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-2708

Malicious code in bioql PyPI...

5.4CVSS5AI score0.00894EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/22 4:29 p.m.8 views

CVE-2020-2094

A missing permission check in Jenkins Health Advisor by CloudBees Plugin 3.0 and earlier allows attackers with Overall/Read permission to send a fixed email to an attacker-specific recipient...

4.3CVSS6.5AI score0.00823EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:51 a.m.6 views

CVE-2019-10470

A missing permission check in Jenkins ElasticBox Jenkins Kubernetes CI/CD Plugin in form-related methods allowed users with Overall/Read access to enumerate credentials ID of credentials stored in Jenkins...

6.5CVSS6.4AI score0.00836EPSS
Exploits0References1
OSV
OSV
added 2025/01/22 6:31 p.m.13 views

GHSA-Q9CM-88JX-3VFW Improper handling of case sensitivity in Jenkins OpenId Connect Authentication Plugin

The Jenkins OpenId Connect Authentication Plugin 4.452.v2849bd3945fa and earlier treats usernames as case-insensitive. On a Jenkins instance configured with a case-sensitive OpenID Connect provider, this allows attackers to log in as any user by providing a username that differs only in letter...

8.8CVSS8.6AI score0.0053EPSS
Exploits0References4
NVD
NVD
added 2025/01/22 5:15 p.m.18 views

CVE-2025-24403

A missing permission check in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of Azure credentials stored in Jenkins...

4.3CVSS0.00288EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/16 6:6 p.m.8 views

CVE-2023-2631 CSRF vulnerability and missing permission checks in Code Dx Plugin

A missing permission check in Jenkins Code Dx Plugin 3.1.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS6.7AI score0.0039EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/11/16 12:0 p.m.33 views

Cross-Site Request Forgery in Jenkins Delete log Plugin

A cross-site request forgery CSRF vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs...

3.5CVSS5.1AI score0.00363EPSS
Exploits0References4Affected Software1
vulnersOsv
vulnersOsv
added 2022/05/24 5:39 p.m.6 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1594 more potentially affected by CVE-2021-21611 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.26)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2021-21611 Source advisory: OSV:GHSA-MJ7Q-CMF3-MG7H...

5.4CVSS6AI score0.01029EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/01/13 3:55 p.m.48 views

CVE-2021-21602

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows reading arbitrary files using the file browser for workspaces and archived artifacts by following symlinks...

6.5CVSS7.1AI score0.02226EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2018/01/26 2:29 a.m.21 views

CVE-2017-1000393

Jenkins 2.73.1 and earlier, 2.83 and earlier users with permission to create or configure agents in Jenkins could configure a launch method called 'Launch agent via execution of command on master'. This allowed them to run arbitrary shell commands on the master node whenever the agent was suppose...

9CVSS7.5AI score0.0261EPSS
Exploits0References2
Rows per page
Query Builder