Lucene search
K

49 matches found

cnvd
cnvd
added 2019/08/23 12:0 a.m.4 views

CloudBees Jenkins OpenShift Deployer Plugin Authorization Issues Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based development of continuous integration tools from the U.S. company CloudBees. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks.OpenShift Deployer Plugin is used in one of the...

6.5CVSS6.8AI score0.01536EPSS
Exploits0References1
cnvd
cnvd
added 2019/04/11 12:0 a.m.3 views

CloudBees Jenkins OpenShift Deployer Plugin Cross-Site Request Forgery Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based development of continuous integration tools from the U.S. company CloudBees. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks.OpenShift Deployer Plugin is used in one of the...

6.5CVSS6.8AI score0.01339EPSS
Exploits0References1
osv
osv
added 2019/04/04 4:29 p.m.17 views

CVE-2019-1003080

A cross-site request forgery vulnerability in Jenkins OpenShift Deployer Plugin in the DeployApplication.DeployApplicationDescriptordoCheckLogin form validation method allows attackers to initiate a connection to an attacker-specified server...

6.5CVSS6.6AI score0.01339EPSS
Exploits0References3
nvd
nvd
added 2019/04/04 4:29 p.m.43 views

CVE-2019-1003081

A missing permission check in Jenkins OpenShift Deployer Plugin in the DeployApplication.DeployApplicationDescriptordoCheckLogin form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server...

6.5CVSS6.3AI score0.01536EPSS
Exploits0References3
prion
prion
added 2019/04/04 4:29 p.m.18 views

Cross site request forgery (csrf)

A cross-site request forgery vulnerability in Jenkins OpenShift Deployer Plugin in the DeployApplication.DeployApplicationDescriptordoCheckLogin form validation method allows attackers to initiate a connection to an attacker-specified server...

4.3CVSS6.4AI score0.01339EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2019/04/04 3:38 p.m.30 views

CVE-2019-1003080

A cross-site request forgery vulnerability in Jenkins OpenShift Deployer Plugin in the DeployApplication.DeployApplicationDescriptordoCheckLogin form validation method allows attackers to initiate a connection to an attacker-specified server...

6.4AI score0.01339EPSS
Exploits0References3
cvelist
cvelist
added 2019/04/04 3:38 p.m.42 views

CVE-2019-1003081

A missing permission check in Jenkins OpenShift Deployer Plugin in the DeployApplication.DeployApplicationDescriptordoCheckLogin form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server...

6.3AI score0.01536EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2019/04/04 12:0 a.m.5 views

PT-2019-11371 · Jenkins · Jenkins Openshift Deployer Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins OpenShift Deployer Plugin affected versions not specified Description: A missing permission check in the DeployApplication.DeployApplicationDescriptordoCheckLogin form validation method allows attackers with Overall/Read permission to...

6.5CVSS6.2AI score0.01536EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2019/04/04 12:0 a.m.6 views

PT-2019-11370 · Jenkins · Jenkins Openshift Deployer Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins OpenShift Deployer Plugin affected versions not specified Description: A cross-site request forgery issue exists in the DeployApplication.DeployApplicationDescriptordoCheckLogin form validation method, allowing attackers to initiate a...

6.5CVSS6.3AI score0.01339EPSS
Exploits0References6
Rows per page
Query Builder