Lucene search
K

10 matches found

OSV
OSV
added 2026/05/08 7:52 p.m.5 views

GHSA-MQQ6-CQCX-38VG Open WebUI's Model Import Overwrites Any Model Without Ownership Check

Model Import Overwrites Any Model Without Ownership Check Affected Component Model import endpoint: - backend/openwebui/routers/models.py lines 254-308, importmodels Affected Versions Current main branch commit 6fdd19bf1 and likely all versions with model import functionality. Description The POS...

6.5CVSS5.8AI score0.0029EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-2422

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.02103EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-0984

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00745EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 10:56 a.m.24 views

BIT-JENKINS-2023-27902

Jenkins LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents...

4.3CVSS4.6AI score0.00745EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2023/03/10 9:30 p.m.28 views

Incorrect Permission Preservation in Jenkins Core

Jenkins uses temporary directories adjacent to workspace directories, usually with the @tmp name suffix, to store temporary files related to the build. In pipelines, these temporary directories are adjacent to the current working directory when operating in a subdirectory of the automatically...

4.3CVSS5AI score0.00745EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2023/03/10 9:15 p.m.18 views

CVE-2023-27902

Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents...

4.3CVSS4.8AI score0.00745EPSS
Exploits0References1
OSV
OSV
added 2023/03/10 9:15 p.m.21 views

CVE-2023-27902

Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents...

4.3CVSS5.1AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/08 5:14 p.m.8 views

CVE-2023-27902

Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents...

4.4AI score0.00745EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/08 12:0 a.m.3 views

PT-2023-21408 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.393 and earlier Jenkins LTS versions 2.375.3 and earlier Jenkins versions prior to LTS 2.387.1 Description: The issue allows attackers with Item/Workspace permission to access the contents of temporary directories related t...

4.3CVSS9.2AI score0.00745EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2021/01/28 12:0 a.m.35 views

Jenkins < 2.276, < 2.263.3 Arbitrary File Read Vulnerability

Jenkins is prone to an arbitrary file read vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

5.3CVSS6.5AI score0.00899EPSS
Exploits0References1
Rows per page
Query Builder