|
248231
|
6.5 |
MEDIUM
Network
|
jenkins
|
black_duck_hub
|
A exposure of sensitive information vulnerability exists in Jenkins Black Duck Hub Plugin 4.0.0 and older in PostBuildScanDescriptor.java that allows attackers with Overall/Read access to connect to …
|
CWE-200
Information Exposure
|
CVE-2018-1000190
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248232
|
8.8 |
HIGH
Network
|
jenkins
|
absint_astree
|
A command execution vulnerability exists in Jenkins Absint Astree Plugin 1.0.5 and older in AstreeBuilder.java that allows attackers with Overall/Read access to execute a command on the Jenkins maste…
|
NVD-CWE-noinfo
|
CVE-2018-1000189
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248233
|
5.4 |
MEDIUM
Network
|
jenkins
|
cas
|
A server-side request forgery vulnerability exists in Jenkins CAS Plugin 1.4.1 and older in CasSecurityRealm.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000188
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248234
|
6.5 |
MEDIUM
Network
|
jenkins
|
kubernetes
|
A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being writte…
|
CWE-200
Information Exposure
|
CVE-2018-1000187
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248235
|
6.5 |
MEDIUM
Network
|
jenkins
|
github_pull_request_builder
|
A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to conne…
|
CWE-200
Information Exposure
|
CVE-2018-1000186
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248236
|
4.3 |
MEDIUM
Network
|
jenkins
|
github_branch_source
|
A server-side request forgery vulnerability exists in Jenkins GitHub Branch Source Plugin 2.3.4 and older in Endpoint.java that allows attackers with Overall/Read access to cause Jenkins to send a GE…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000185
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248237
|
5.4 |
MEDIUM
Network
|
jenkins
|
github
|
A server-side request forgery vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubPluginConfig.java that allows attackers with Overall/Read access to cause Jenkins to send a GET r…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000184
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248238
|
6.5 |
MEDIUM
Network
|
jenkins
|
github
|
A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubServerConfig.java that allows attackers with Overall/Read access to connect to an attacker-…
|
CWE-200
Information Exposure
|
CVE-2018-1000183
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248239
|
6.4 |
MEDIUM
Network
|
jenkins
|
git
|
A server-side request forgery vulnerability exists in Jenkins Git Plugin 3.9.0 and older in AssemblaWeb.java, GitBlitRepositoryBrowser.java, Gitiles.java, TFS2013GitRepositoryBrowser.java, ViewGitWeb…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000182
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248240
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed proces…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-1000200
|
2024-11-21 12:39 |
2018-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
