Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-0688

Malicious code in bioql PyPI...

4.3CVSS5AI score0.0052EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0768

Malicious code in bioql PyPI...

3.5CVSS4.9AI score0.00357EPSS
Exploits0References4
NVD
NVD
added 2023/02/15 7:15 p.m.26 views

CVE-2023-23850

A missing permission check in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4.3CVSS4.4AI score0.00509EPSS
Exploits0References2
NVD
NVD
added 2023/02/15 7:15 p.m.25 views

CVE-2023-23848

Missing permission checks in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

4.3CVSS4.5AI score0.0052EPSS
Exploits0References2
Prion
Prion
added 2023/02/15 7:15 p.m.24 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

3.5CVSS4AI score0.00357EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/02/15 7:15 p.m.12 views

Information disclosure

A missing permission check in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4CVSS4.4AI score0.00509EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/02/15 12:0 a.m.20 views

CVE-2023-23848

Missing permission checks in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

4.8AI score0.0052EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/02/15 12:0 a.m.27 views

CVE-2023-23850

A missing permission check in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4.7AI score0.00509EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/02/15 12:0 a.m.7 views

CVE-2023-23847

A cross-site request forgery CSRF vulnerability in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.6AI score0.00357EPSS
Exploits0References2
CVE
CVE
added 2023/02/15 12:0 a.m.69 views

CVE-2023-23848

The CVE-2023-23848 entry concerns missing permission checks in the Synopsys Jenkins Coverity Plugin (versions

4.3CVSS4.5AI score0.0052EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/02/15 12:0 a.m.36 views

CVE-2023-23847

A cross-site request forgery CSRF vulnerability in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

4.3AI score0.00357EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2023/02/15 12:0 a.m.20 views

CVE-2023-23850

A missing permission check in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4.3CVSS5.4AI score0.00509EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2023/02/15 12:0 a.m.29 views

CVE-2023-23847

A cross-site request forgery CSRF vulnerability in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

3.5CVSS6AI score0.00357EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2023/02/15 12:0 a.m.24 views

CVE-2023-23848

Missing permission checks in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

4.3CVSS5.9AI score0.0052EPSS
Exploits0References3
Rows per page
Query Builder