Lucene search
K

6 matches found

Cvelist
Cvelist
added 2026/06/24 1:20 p.m.31 views

CVE-2026-57284

Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier does not restrict the types that can be instantiated through the Pipeline Snippet Generator, allowing attackers to instantiate types related to job or system configuration other than Pipeline steps...

0.00275EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/24 1:20 p.m.33 views

CVE-2026-57283

A cross-site request forgery CSRF vulnerability in Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier allows attackers to instantiate types related to job or system configuration other than Pipeline steps through the Pipeline Snippet Generator...

0.00158EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/24 1:20 p.m.5 views

CVE-2026-57283

A cross-site request forgery CSRF vulnerability in Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier allows attackers to instantiate types related to job or system configuration other than Pipeline steps through the Pipeline Snippet Generator...

4.3CVSS5.8AI score0.00158EPSS
Exploits0References2
OSV
OSV
added 2023/03/26 7:15 p.m.5 views

PYSEC-2023-46

redis-py through 4.5.3 leaves a connection open after canceling an async Redis command at an inopportune time in the case of a non-pipeline operation, and can send response data to the client of an unrelated request. NOTE: this issue exists because of an incomplete fix for CVE-2023-28858...

6.5CVSS6.6AI score0.01034EPSS
Exploits0References3
PyPA
PyPA
added 2023/03/26 7:15 p.m.8 views

PYSEC-2023-46

redis-py through 4.5.3 leaves a connection open after canceling an async Redis command at an inopportune time in the case of a non-pipeline operation, and can send response data to the client of an unrelated request. NOTE: this issue exists because of an incomplete fix for CVE-2023-28858...

6.5CVSS7.1AI score0.01034EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/26 12:0 a.m.4 views

PT-2023-2098 · Pypi +2 · Redis-Py +2

Name of the Vulnerable Software and Affected Versions: redis-py versions 4.4.0 through 4.4.3 redis-py versions 4.5.0 through 4.5.3 Description: The issue is related to the redis-py library for Python, which is associated with a lack of protection for service data. This could allow a remote attack...

7.1CVSS7.4AI score0.01034EPSS
Exploits0References60
Rows per page
Query Builder