24 matches found
EUVD-2005-2292
Malware in sbrugna...
EUVD-2022-5244
Malicious code in bioql PyPI...
EUVD-2024-17469
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-1742
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24,...
CVE-2024-1742
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2020-2312
Jenkins SQLPlus Script Runner Plugin 2.0.12 and earlier does not mask a password provided as command line argument in build logs...
CVE-2024-1742
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2024-1742
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
UBUNTU-CVE-2024-1742
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2024-1742 Information disclosure in mk_oracle Checkmk agent plugin
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2024-1742 Information disclosure in mk_oracle Checkmk agent plugin
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2024-1742
Summary: CVE-2024-1742 concerns the mk_oracle Checkmk agent plugin exposing sensitive information by invoking sqlplus on the command line, allowing leakage from the process list. What is affected: Checkmk agent plugins mk_oracle prior to versions: 2.3.0b4 (beta), 2.2.0p24, 2.1.0p41, and 2.0.0 (EO...
Checkmk 安全漏洞
Checkmk is an editor. A security vulnerability exists in Checkmk versions prior to 2.3.0b4 beta, 2.2.0p24, 2.1.0p41, and 2.0.0 EOL, which stems from a call to a sqlplus command on the agent plugin mkoracle Checkmk command line that contains sensitive information, allowing a list of this informati...
GHSA-RWH3-5G7V-3C5M Password written to the build log by Jenkins SQLPlus Script Runner Plugin
Jenkins SQLPlus Script Runner Plugin 2.0.12 and earlier prints the sqlplus command invocation to the build logs. This log message does not redact a password provided as part of a command line argument. This password can be viewed by users with Item/Read permission. Jenkins SQLPlus Script Runner...
Password written to the build log by Jenkins SQLPlus Script Runner Plugin
Jenkins SQLPlus Script Runner Plugin 2.0.12 and earlier prints the sqlplus command invocation to the build logs. This log message does not redact a password provided as part of a command line argument. This password can be viewed by users with Item/Read permission. Jenkins SQLPlus Script Runner...
Bento - A Minimal Fedora-Based Container For Penetration Tests And CTF With The Sweet Addition Of GUI Applications
A bento 弁当, bentō is a single-portion take-out or home-packed meal of Japanese origin. Bento Toolkit is a simple and minimal docker container for penetration testers and CTF players. It has the portability of Docker with the addition of X, so you can also run GUI application like burp...
CloudBees Jenkins SQLPlus Script Runner Plugin Information Disclosure Vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . An information disclosure...
CVE-2020-2312
Jenkins SQLPlus Script Runner Plugin 2.0.12 and earlier does not mask a password provided as command line argument in build logs...
CVE-2020-2312
Jenkins SQLPlus Script Runner Plugin 2.0.12 and earlier does not mask a password provided as command line argument in build logs...
CVE-2020-2312
CVE-2020-2312 concerns Jenkins SQLPlus Script Runner Plugin (versions 2.0.12 and earlier). The issue arises because the plugin prints the sqlplus command invocation to build logs without masking the password provided as a command line argument, enabling users with Item/Read permission to view the...