Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-3761

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.01611EPSS
Exploits0References8
OSV
OSV
added 2022/05/13 1:36 a.m.2 views

GHSA-FFGG-VPHH-V273 Incomplete List of Disallowed Inputs in Jenkins

Jenkins before versions 2.44 and 2.32.2 is vulnerable to an improper blacklisting of the Pipeline metadata files in the agent-to-master security subsystem. This could allow metadata files to be written to by malicious agents SECURITY-358...

4.3CVSS5.8AI score0.01611EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/05/13 1:36 a.m.27 views

Incomplete List of Disallowed Inputs in Jenkins

Jenkins before versions 2.44 and 2.32.2 is vulnerable to an improper blacklisting of the Pipeline metadata files in the agent-to-master security subsystem. This could allow metadata files to be written to by malicious agents SECURITY-358...

4.3CVSS5.2AI score0.01611EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2021/12/02 10:4 p.m.5 views

jenkins: Agent-to-controller access control allows reading/writing most content of build directories

An incorrect access restriction vulnerability was found in Jenkins. The directories agents are allowed to access include the directories where there are stored build-related information intended to allow agents to store build-related metadata during build execution. As a consequence, this allows ...

9.1CVSS5.8AI score0.0155EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/02 6:37 p.m.2 views

jenkins: Agent-to-controller access control allows reading/writing most content of build directories

An incorrect access restriction vulnerability was found in Jenkins. The directories agents are allowed to access include the directories where there are stored build-related information intended to allow agents to store build-related metadata during build execution. As a consequence, this allows ...

9.1CVSS5.8AI score0.0155EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/01 12:28 p.m.7 views

jenkins: Agent-to-controller access control allows reading/writing most content of build directories

An incorrect access restriction vulnerability was found in Jenkins. The directories agents are allowed to access include the directories where there are stored build-related information intended to allow agents to store build-related metadata during build execution. As a consequence, this allows ...

9.1CVSS5.8AI score0.0155EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/11/30 9:11 a.m.7 views

jenkins: Agent-to-controller access control allows reading/writing most content of build directories

An incorrect access restriction vulnerability was found in Jenkins. The directories agents are allowed to access include the directories where there are stored build-related information intended to allow agents to store build-related metadata during build execution. As a consequence, this allows ...

9.1CVSS5.8AI score0.0155EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/11/29 10:40 a.m.4 views

jenkins: Agent-to-controller access control allows reading/writing most content of build directories

An incorrect access restriction vulnerability was found in Jenkins. The directories agents are allowed to access include the directories where there are stored build-related information intended to allow agents to store build-related metadata during build execution. As a consequence, this allows ...

9.1CVSS5.8AI score0.0155EPSS
Exploits0References5
OSV
OSV
added 2018/05/15 9:29 p.m.22 views

CVE-2017-2602

jenkins before versions 2.44, 2.32.2 is vulnerable to an improper blacklisting of the Pipeline metadata files in the agent-to-master security subsystem. This could allow metadata files to be written to by malicious agents SECURITY-358...

4.3CVSS5AI score0.01611EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/05/15 9:0 p.m.19 views

CVE-2017-2602

jenkins before versions 2.44, 2.32.2 is vulnerable to an improper blacklisting of the Pipeline metadata files in the agent-to-master security subsystem. This could allow metadata files to be written to by malicious agents SECURITY-358...

3.1CVSS4.7AI score0.01611EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2017/02/02 3:20 p.m.25 views

CVE-2017-2602

jenkins before versions 2.44, 2.32.2 is vulnerable to an improper blacklisting of the Pipeline metadata files in the agent-to-master security subsystem. This could allow metadata files to be written to by malicious agents SECURITY-358...

4.3CVSS4.5AI score0.01611EPSS
Exploits0References2
Rows per page
Query Builder