Lucene search
K

4 matches found

OSV
OSV
added 2022/10/19 10:15 p.m.4 views

UBUNTU-CVE-2022-41741

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttpmp4module that might allow a local attacker to corrupt NGINX worker memory, resulting in...

7.8CVSS7.1AI score0.00756EPSS
Exploits2References6
CNNVD
CNNVD
added 2022/10/19 12:0 a.m.4 views

F5 Nginx 缓冲区错误漏洞

F5 Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from F5 USA, distributed under the BSD-like protocol. A buffer error vulnerability exists in F5 Nginx version 1.23.2, 1.22.1. An attacker could exploit this vulnerability to corrupt NGINX worker memory...

7.8CVSS7.6AI score0.00756EPSS
Exploits2References14
RedHat Linux
RedHat Linux
added 2020/11/17 4:40 a.m.8 views

jenkins-2-plugins/blueocean: Blue Ocean Plugin does not perform permission checks in several HTTP endpoints implementing connection tests.

A missing permission check in Jenkins Blue Ocean Plugin 1.23.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS5.8AI score0.00849EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2020/10/27 2:53 p.m.7 views

jenkins-2-plugins/blueocean: Blue Ocean Plugin does not perform permission checks in several HTTP endpoints implementing connection tests.

A missing permission check in Jenkins Blue Ocean Plugin 1.23.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS5.8AI score0.00849EPSS
Exploits0References6
Rows per page
Query Builder