CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Prion•added 2024/03/06 5:15 p.m.•24 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers to connect to an attacker-specified TCP or Unix socket URL, and to reconfigure the plugin using the provided connection test parameters, affecting future build step executions...

7.1AI score0.00043EPSS

Exploits0References1

Cvelist•added 2024/03/06 5:1 p.m.•18 views

CVE-2024-2215

6.7AI score0.00043EPSS

Exploits0References2

Positive Technologies•added 2024/03/06 12:0 a.m.•2 views

PT-2024-19236 · Jenkins · Jenkins Docker-Build-Step Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins docker-build-step Plugin versions 2.11 and earlier Description: A cross-site request forgery issue allows attackers to connect to a specified TCP or Unix socket URL and reconfigure the plugin, affecting future build step executions...

6.1CVSS6.7AI score0.00043EPSS

Exploits0References5

Github Security Blog•added 2022/05/24 5:30 p.m.•21 views

CSRF vulnerability in Jenkins Maven Cascade Release Plugin

A cross-site request forgery CSRF vulnerability in Jenkins Maven Cascade Release Plugin 1.3.2 and earlier allows attackers to start cascade builds and layout builds, and reconfigure the plugin...

6.5CVSS6.2AI score0.0012EPSS

Exploits0References4Affected Software1

Prion•added 2020/10/08 1:15 p.m.•13 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Maven Cascade Release Plugin 1.3.2 and earlier allows attackers to start cascade builds and layout builds, and reconfigure the plugin...

4.3CVSS6.4AI score0.0012EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2020/10/08 12:0 a.m.•2 views

PT-2020-15524 · Jenkins · Jenkins Maven Cascade Release Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins Maven Cascade Release Plugin versions 1.3.2 and earlier Description: The issue concerns a lack of permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to start cascade builds and layout builds,...

6.5CVSS6.2AI score0.00231EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by