Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2023/11/29 12:0 a.m.10 views

PT-2023-31283 · Jenkins · Jenkins Neuvector Vulnerability Scanner Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins NeuVector Vulnerability Scanner Plugin versions 1.22 and earlier Description: A cross-site request forgery CSRF vulnerability exists due to the lack of permission checks in a connection test HTTP endpoint, allowing attackers with...

8.8CVSS6.8AI score0.00447EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/08/21 12:0 a.m.3 views

PT-2023-6024 · Jenkins · Jenkins Fortify Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Fortify Plugin versions 22.1.38 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs, capturing credentials stored i...

6.4CVSS5.5AI score0.00196EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2022/02/15 12:0 a.m.6 views

PT-2022-17134 · Jenkins · Jenkins Autonomiq Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins autonomiq Plugin versions 1.15 and earlier Description: A cross-site request forgery CSRF vulnerability exists due to the lack of permission checks in an HTTP endpoint. This allows attackers with Overall/Read permission to connect to ...

8.8CVSS8.5AI score0.00519EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/09/25 12:0 a.m.8 views

PT-2019-11802 · Jenkins · Jenkins Project Inheritance Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Project Inheritance Plugin version 2.0.0 and earlier Description: A cross-site request forgery issue exists due to a missing permission check in an HTTP endpoint that triggers project creation from templates. This allowed users with...

4.3CVSS4.4AI score0.00606EPSS
Exploits0References4
Rows per page
Query Builder