CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7 matches found

Github Security Blog•added 2024/01/09 9:30 a.m.•23 views

Qualys Jenkins Plugin for Policy Compliance XML External Entity vulnerability

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs...

6.5CVSS7AI score0.00231EPSS

Exploits0References6Affected Software1

OSV•added 2024/01/09 9:30 a.m.•11 views

GHSA-RWF9-8FQR-P44M Qualys Jenkins Plugin for Policy Compliance Cross-site Scripting vulnerability

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access and access to configure o...

5.7CVSS5.7AI score0.00467EPSS

Exploits0References5

NVD•added 2024/01/09 9:15 a.m.•9 views

CVE-2023-6149

Qualys Jenkins Plugin for WAS prior to version and including 2.0.11 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs to utilize t...

6.5CVSS5.9AI score0.00217EPSS

Exploits0References1

Prion•added 2024/01/09 9:15 a.m.•14 views

Cross site scripting

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access and access to configure o...

4.9CVSS6.3AI score0.00467EPSS

Exploits0References2Affected Software1

NVD•added 2024/01/09 8:15 a.m.•9 views

CVE-2023-6147

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs...

6.5CVSS5.9AI score0.00231EPSS

Exploits0References2

Cvelist•added 2024/01/09 8:8 a.m.•14 views

CVE-2023-6147 Possible XXE vulnerability in Jenkins Plugin for Qualys Policy Compliance

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs...

5.7CVSS6.8AI score0.00231EPSS

Exploits0References2

Vulnrichment•added 2024/01/09 8:8 a.m.•10 views

CVE-2023-6147 Possible XXE vulnerability in Jenkins Plugin for Qualys Policy Compliance

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs...

5.7CVSS6.1AI score0.00231EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by