PT-2020-15516 · Jenkins · Jenkins Role-Based Authorization Strategy Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Role-based Authorization Strategy Plugin versions 3.0 and earlier Description: The issue arises from the improper invalidation of a permission cache when the configuration is changed, resulting in permissions being granted based on an...

Siemens SIMATIC, SIMOTICS (Update A)

1. EXECUTIVE SUMMARY CVSS v3 3.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC, SIMOTICS Vulnerability: TOCTOU Race Condition 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-20-224-05 Siemens SIMATIC,...

Product update: Virtuozzo Infrastructure Platform 3.0 Update 3.1 (3.0.3-27)

This update provides a stability fix. Vulnerability id: VSTOR-27309 ABGW Fixes ABGW context leak...

Microsoft Team Foundation Server Cross-Site Scripting Vulnerability (CNVD-2019-24393))

Microsoft Team Foundation Server is the United States Microsoft Microsoft company's set of application lifecycle management ALM tool suite of team collaboration platform. The platform includes code management, project management and other features. A cross-site scripting vulnerability in Microsof...