Lucene search
+L

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-0609

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00852EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2022/01/24 6:5 p.m.82 views

CVE-2022-20616

A missing permissions validation vulnerability was found in the Jenkins Credentials Binding plugin. The form validation method does not perform a permission check which allows attackers with Overall/Read access to validate if a credential ID refers to a secret file credential and whether it’s a z...

4.3CVSS4.2AI score0.00852EPSS
Exploits0References4
OSV
OSV
added 2022/01/13 12:1 a.m.35 views

GHSA-GQM2-2GCX-P88W Incorrect Permission Assignment for Critical Resource in Jenkins Credentials Binding Plugin

Jenkins Credentials Binding Plugin prior to 1.27.1 and 1.24.1 does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read access to validate if a credential ID refers to a secret file credential and whether it’s a zip file. Credentials...

4.3CVSS4.7AI score0.00852EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/01/12 8:15 p.m.10 views

CVE-2022-20616

Jenkins Credentials Binding Plugin 1.27 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read access to validate if a credential ID refers to a secret file credential and whether it's a zip file...

4.3CVSS5.8AI score0.00852EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/01/12 7:5 p.m.31 views

CVE-2022-20616

Jenkins Credentials Binding Plugin 1.27 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read access to validate if a credential ID refers to a secret file credential and whether it's a zip file...

5.7AI score0.00852EPSS
Exploits0References2
Rows per page
Query Builder