Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2022/08/19 4:38 a.m.63 views

CVE-2022-30952

Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins...

6.5CVSS4.6AI score0.00922EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/06/16 12:0 a.m.72 views

Jenkins plugins Multiple Vulnerabilities (2022-05-17)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins Pipeline: Groovy Plugin 2689.v434009a31bf1 and earlier allows loading any Groovy source files on the classpath of Jenkins and Jenki...

8.8CVSS7.2AI score0.71943EPSS
Exploits0References29
vulnersOsv
vulnersOsv
added 2022/05/18 12:0 a.m.3 views

io.jenkins.blueocean:blueocean (>=1.1.0 <=1.1.7), io.jenkins.blueocean:blueocean-events (>=1.1.0 <=1.1.7) +3 more potentially affected by CVE-2022-30952 via io.jenkins.blueocean:blueocean-pipeline-scm-api (>=1.1.0-beta-4 <=1.1.7)

io.jenkins.blueocean:blueocean-pipeline-scm-api MAVEN version =1.1.0-beta-4, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.7 Source cves: CVE-2022-30952 Source advisory: OSV:GHSA-G74W-93CP-5P3P...

6.5CVSS6.5AI score0.00922EPSS
Exploits0
OSV
OSV
added 2022/05/17 3:15 p.m.27 views

CVE-2022-30952

Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins...

6.5CVSS6.2AI score
Exploits0References2
Prion
Prion
added 2022/05/17 3:15 p.m.18 views

Code injection

Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins...

4CVSS7.5AI score0.00922EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder