CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

RedHat Linux•added 2023/02/23 12:1 a.m.•2 views

jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions

A flaw was found in the script-security Jenkins Plugin. SHA-1 no longer meets the security standards for producing a cryptographically secure message digest. The affected version of the script-security Plugin stores whole-script approvals as the SHA-1 hash of the approved script...

7.5CVSS5.7AI score0.00362EPSS

Exploits0References5

RedHat Linux•added 2023/02/08 6:41 p.m.•2 views

jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions

7.5CVSS5.7AI score0.00362EPSS

Exploits0References5

OSV•added 2022/11/15 8:15 p.m.•28 views

CVE-2022-45379

Jenkins Script Security Plugin 1189.vbab7c8fd5fde and earlier stores whole-script approvals as the SHA-1 hash of the script, making it vulnerable to collision attacks...

7.5CVSS7.4AI score

Exploits0References2

ATTACKERKB•added 2022/11/15 8:15 p.m.•2 views

CVE-2022-45379

Jenkins Script Security Plugin 1189.vbab7c8fd5fde and earlier stores whole-script approvals as the SHA-1 hash of the script, making it vulnerable to collision attacks...

7.5CVSS7.1AI score0.00362EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by