Vmware Lab Manager Slaves Security Vulnerabilities and Issues — Vmware Lab Manager Slaves CVE List

Lucene search

JenkinsVmware Lab Manager Slaves

3 matches found

CVE•added 2019/04/04 4:29 p.m.•44 views

CVE-2019-1003078

A cross-site request forgery vulnerability in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server.

6.5CVSS6.3AI score0.00068EPSS

CVE•added 2019/08/07 3:15 p.m.•43 views

CVE-2019-10382

Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM.

6.5CVSS6.4AI score0.0005EPSS

CVE•added 2019/04/04 4:29 p.m.•40 views

CVE-2019-1003079

A missing permission check in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.

6.5CVSS6.2AI score0.00084EPSS