CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-5032

Malicious code in bioql PyPI...

8CVSS7.7AI score0.00761EPSS

Exploits0References8

OSV•added 2022/05/24 5:39 p.m.•0 views

GHSA-QV6F-RCV6-6Q3X Improper handling of REST API XML deserialization errors in Jenkins

Jenkins provides XML REST APIs to configure views, jobs, and other items. When deserialization fails because of invalid data, Jenkins 2.274 and earlier, LTS 2.263.1 and earlier stores invalid object references created through these endpoints in the Old Data Monitor. If an administrator discards t...

8CVSS7.1AI score0.00761EPSS

Exploits0References4

Github Security Blog•added 2022/05/24 5:39 p.m.•19 views

Improper handling of REST API XML deserialization errors in Jenkins

8CVSS2.6AI score0.00761EPSS

Exploits0References4Affected Software1

RedHat Linux•added 2021/03/03 12:28 p.m.•4 views

jenkins: Improper handling of REST API XML deserialization errors

A flaw was found in jenkins. An attacker with permission to create or configure various objects to inject crafted content into Old Data Monitor can cause the instantiation of potentially unsafe objects once discarded by an administrator. The highest threat from this vulnerability is to data...

8CVSS5.8AI score0.00761EPSS

Exploits0References4

Veracode•added 2021/01/14 4:24 p.m.•7 views

Authorization Bypass

jenkins is vulnerable to authorization bypass. The vulnerability allows users permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator...

8CVSS6.4AI score0.00761EPSS

Exploits0References2Affected Software1

OSV•added 2021/01/13 4:15 p.m.•13 views

CVE-2021-21604

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator...

8CVSS6.4AI score

Exploits0References1

Prion•added 2021/01/13 4:15 p.m.•12 views

Design/Logic Flaw

6CVSS7.5AI score0.00761EPSS

Exploits0References1Affected Software1

AlpineLinux•added 2021/01/13 3:55 p.m.•30 views

CVE-2021-21604

8CVSS7.7AI score0.00761EPSS

Exploits0

Cvelist•added 2021/01/13 3:55 p.m.•13 views

CVE-2021-21604

7.8AI score0.00761EPSS

Exploits0References1

Positive Technologies•added 2021/01/13 12:0 a.m.•2 views

PT-2021-14647 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.274 and earlier, LTS versions 2.263.1 and earlier Description: The issue allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor, resulting in the instantiatio...

8CVSS7.6AI score0.00761EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by