Lucene search
Veracode Vulnerability DatabaseVERACODE:46801HistoryMay 08, 2024 - 6:08 a.m.
Improper Access Control
2024-05-0806:08:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
improper access control
jenkins
script-security
ssh
git
vulnerability
org.jenkins-ci.plugins: script-security is vulnerable to Improper Access Control. The vulnerability is due to improper permission checks during read access to a Git repository over SSH. This allows attackers with a previously configured SSH public key but lacking Overall/Read permission to access Git repositories.
| CPE | Name | Operator | Version |
|---|---|---|---|
| script security plugin | le | 1335.vf07d9ce377a_e | |
| script security plugin | le | 1335.vf07d9ce377a_e |
Related
redhatcve
redhatcve
CVE-2024-34145
2024-05-03 08:53:45
osv
osv
Jenkins Script Security Plugin sandbox bypass vulnerability
2024-05-02 15:30:35
cvelist
cvelist
CVE-2024-34145
2024-05-02 13:28:03
nvd
nvd
CVE-2024-34145
2024-05-02 14:15:10
vulnrichment
vulnrichment
CVE-2024-34145
2024-05-02 13:28:03
wolfi
wolfi
CVE-2024-34145 vulnerabilities
2024-06-23 15:23:54
github
github
Jenkins Script Security Plugin sandbox bypass vulnerability
2024-05-02 15:30:35
cgr
cgr
CVE-2024-34145 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2024-34145
2024-05-02 14:15:10
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2024-05-02)
2024-05-02 00:00:00
RHEL 8 : Red Hat Product OCP Tools 4.14 OpenShift Jenkins (RHSA-2024:3634)
2024-06-05 00:00:00
RHEL 8 : Red Hat Product OCP Tools 4.12 Openshift Jenkins (RHSA-2024:3635)
2024-06-05 00:00:00