CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2022-3470

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00613EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•8 views

EUVD-2022-5531

Malicious code in bioql PyPI...

9.3CVSS9.2AI score0.01794EPSS

Exploits0References5

RedhatCVE•added 2025/05/22 10:25 a.m.•7 views

CVE-2019-10309

Jenkins Self-Organizing Swarm Plug-in Modules Plugin clients that use UDP broadcasts to discover Jenkins masters do not prevent XML External Entity processing when processing the responses, allowing unauthorized attackers on the same network to read arbitrary files from Swarm clients...

9.3CVSS6.7AI score0.01794EPSS

Exploits0References1

CNVD•added 2020/06/04 12:0 a.m.•3 views

CloudBees Jenkins Self-Organizing Swarm Plug-in Modules Plugin Authorization Issue Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based continuous integration tools from CloudBees, Inc. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks.Self-Organizing Swarm Plug-in Modules Plugin is a plug-in that supports the...

4.3CVSS7.1AI score0.00656EPSS

Exploits0References1

NVD•added 2020/06/03 1:15 p.m.•29 views

CVE-2020-2191

Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier does not check permissions on API endpoints that allow adding and removing agent labels...

4.3CVSS4.6AI score0.00656EPSS

Exploits0References2

NVD•added 2020/06/03 1:15 p.m.•21 views

CVE-2020-2192

A cross-site request forgery vulnerability in Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier allows attackers to add or remove agent labels...

6.5CVSS6.3AI score0.00613EPSS

Exploits0References2

OSV•added 2020/06/03 1:15 p.m.•18 views

CVE-2020-2192

A cross-site request forgery vulnerability in Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier allows attackers to add or remove agent labels...

6.5CVSS6.9AI score

Exploits0References2

Prion•added 2020/06/03 1:15 p.m.•14 views

Cross site request forgery (csrf)

A cross-site request forgery vulnerability in Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier allows attackers to add or remove agent labels...

4.3CVSS6.3AI score0.00613EPSS

Exploits0References2Affected Software1

CVE•added 2020/06/03 12:40 p.m.•80 views

CVE-2020-2192

The CVE-2020-2192 entry covers a CSRF vulnerability in Jenkins Swarm Plugin (Self-Organizing Swarm Plug-in Modules) up to version 3.20. The issue arises because the plugin exposes API endpoints that add or remove agent labels and, in 3.20 and earlier, do not perform regular permission checks or r...

6.5CVSS6.3AI score0.00613EPSS

Exploits0References2Affected Software1

Cvelist•added 2020/06/03 12:40 p.m.•22 views

CVE-2020-2192

A cross-site request forgery vulnerability in Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier allows attackers to add or remove agent labels...

6.4AI score0.00613EPSS

Exploits0References2

Cvelist•added 2020/06/03 12:40 p.m.•33 views

CVE-2020-2191

Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier does not check permissions on API endpoints that allow adding and removing agent labels...

4.6AI score0.00656EPSS

Exploits0References2

Prion•added 2019/04/30 1:29 p.m.•15 views

Xxe

4.8CVSS9.1AI score0.01794EPSS

Exploits0References4

CVE•added 2019/04/30 12:25 p.m.•64 views

CVE-2019-10309

The CVE-2019-10309 entry concerns the Jenkins Swarm Plugin (Swarm Client) where UDP-based master discovery responses are XML documents that are parsed without proper XXE protection. This XXE flaw could allow an unauthenticated attacker on the same network to read arbitrary files from Swarm client...

9.3CVSS9AI score0.01794EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by