Libvirt Slaves Security Vulnerabilities and Issues — Libvirt Slaves CVE List

Lucene search

JenkinsLibvirt Slaves

3 matches found

CVE•added 2019/10/23 1:15 p.m.•60 views

CVE-2019-10472

A missing permission check in Jenkins Libvirt Slaves Plugin allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

6.5CVSS6.3AI score0.00048EPSS

CVE•added 2019/10/23 1:15 p.m.•52 views

CVE-2019-10471

A cross-site request forgery vulnerability in Jenkins Libvirt Slaves Plugin allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

8.8CVSS8.6AI score0.00093EPSS

CVE•added 2019/10/23 1:15 p.m.•50 views

CVE-2019-10473

A missing permission check in Jenkins Libvirt Slaves Plugin in form-related methods allowed users with Overall/Read access to enumerate credentials ID of credentials stored in Jenkins.

4.3CVSS4.4AI score0.00031EPSS