CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-22728

Malware in sbrugna...

5.2CVSS5.2AI score0.00167EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-4279

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00031EPSS

Exploits0References6

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2021-36096

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Generated Support Bundles contains private S/MIME and PGP keys if containing folder is not hidden. This issue affects: OTRS AG OTRS Community Edition 6.0.x...

5.2CVSS5.3AI score0.00167EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 8:16 a.m.•8 views

CVE-2019-16539

A missing permission check in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete support bundles...

6.5CVSS6.6AI score0.00031EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 4:4 a.m.•2 views

SUSE CVE-2020-1770

Support bundle generated files could contain sensitive information that might be unwanted to be disclosed. This issue affects: OTRS Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions...

2.4CVSS4.8AI score0.0036EPSS

Exploits0References6

OSV•added 2022/11/15 8:15 p.m.•17 views

CVE-2022-45383

An incorrect permission check in Jenkins Support Core Plugin 1206.v14049fabd860 and earlier allows attackers with Support/DownloadBundle permission to download a previously created support bundle containing information limited to users with Overall/Administer permission...

6.5CVSS6.2AI score

Exploits0References2

Positive Technologies•added 2022/10/21 12:0 a.m.•5 views

PT-2022-25948 · Gradle · Gradle Enterprise

Name of the Vulnerable Software and Affected Versions: Gradle Enterprise versions 2022.3 through 2022.3.3 Description: A credential-exposure issue in the support-bundle mechanism allows remote attackers to access a subset of application data, including cleartext credentials. Recommendations: For...

7.5CVSS7.3AI score0.00232EPSS

Exploits0References3

Github Security Blog•added 2022/05/24 5:1 p.m.•24 views

Missing permission check in Jenkins Support Core Plugin

A missing permission check in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete support bundles...

6.5CVSS6.8AI score0.00031EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2022/02/15 5:15 p.m.•5 views

CVE-2022-25187

Jenkins Support Core Plugin 2.79 and earlier does not redact some sensitive information in the support bundle...

6.5CVSS6.6AI score0.00101EPSS

Exploits0References2

NVD•added 2021/09/06 3:15 p.m.•21 views

CVE-2021-36096

Generated Support Bundles contains private S/MIME and PGP keys if containing folder is not hidden. This issue affects: OTRS AG OTRS Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions; 8.0.x version 8.0.15 and prior versions...

5.2CVSS0.00167EPSS

Exploits0References1

UbuntuCve•added 2021/09/06 3:15 p.m.•25 views

CVE-2021-36096

5.2CVSS5.9AI score0.00167EPSS

Exploits0References2

Prion•added 2021/09/06 3:15 p.m.•16 views

Design/Logic Flaw

4CVSS5.1AI score0.00167EPSS

Exploits0References1Affected Software1

OSV•added 2021/09/06 3:15 p.m.•2 views

UBUNTU-CVE-2021-36096

5.2CVSS5.8AI score0.00167EPSS

Exploits0References3

CVE•added 2021/09/06 2:50 p.m.•69 views

CVE-2021-36096

The CVE-2021-36096 issue affects OTRS packages where Generated Support Bundles may contain private S/MIME and PGP keys if the containing folder is not hidden. Affected products and versions: OTRS Community Edition 6.0.x (6.0.1+), OTRS 7.0.x (7.0.28+), and OTRS 8.0.x (8.0.15+). Root cause is infor...

5.2CVSS5.1AI score0.00167EPSS

Exploits0References1Affected Software1

Debian CVE•added 2021/09/06 2:50 p.m.•22 views

CVE-2021-36096

Removed by vendor...

5.2CVSS5.3AI score0.00167EPSS

Exploits0

OSV•added 2021/07/26 5:15 a.m.•18 views

CVE-2021-21440