|
248761
|
8.8 |
HIGH
Network
|
jenkins
|
absint_astree
|
A command execution vulnerability exists in Jenkins Absint Astree Plugin 1.0.5 and older in AstreeBuilder.java that allows attackers with Overall/Read access to execute a command on the Jenkins maste…
|
NVD-CWE-noinfo
|
CVE-2018-1000189
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248762
|
5.4 |
MEDIUM
Network
|
jenkins
|
cas
|
A server-side request forgery vulnerability exists in Jenkins CAS Plugin 1.4.1 and older in CasSecurityRealm.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000188
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248763
|
6.5 |
MEDIUM
Network
|
jenkins
|
kubernetes
|
A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being writte…
|
CWE-200
Information Exposure
|
CVE-2018-1000187
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248764
|
6.5 |
MEDIUM
Network
|
jenkins
|
github_pull_request_builder
|
A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to conne…
|
CWE-200
Information Exposure
|
CVE-2018-1000186
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248765
|
4.3 |
MEDIUM
Network
|
jenkins
|
github_branch_source
|
A server-side request forgery vulnerability exists in Jenkins GitHub Branch Source Plugin 2.3.4 and older in Endpoint.java that allows attackers with Overall/Read access to cause Jenkins to send a GE…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000185
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248766
|
5.4 |
MEDIUM
Network
|
jenkins
|
github
|
A server-side request forgery vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubPluginConfig.java that allows attackers with Overall/Read access to cause Jenkins to send a GET r…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000184
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248767
|
6.5 |
MEDIUM
Network
|
jenkins
|
github
|
A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubServerConfig.java that allows attackers with Overall/Read access to connect to an attacker-…
|
CWE-200
Information Exposure
|
CVE-2018-1000183
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248768
|
6.4 |
MEDIUM
Network
|
jenkins
|
git
|
A server-side request forgery vulnerability exists in Jenkins Git Plugin 3.9.0 and older in AssemblaWeb.java, GitBlitRepositoryBrowser.java, Gitiles.java, TFS2013GitRepositoryBrowser.java, ViewGitWeb…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2018-1000182
|
2024-11-21 12:39 |
2018-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248769
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed proces…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-1000200
|
2024-11-21 12:39 |
2018-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248770
|
7.5 |
HIGH
Network
|
ibm
|
kitura
|
Kitura 2.3.0 and earlier have an unintended read access to unauthorised files and folders that can be exploited by a crafted URL resulting in information disclosure.
|
CWE-200
Information Exposure
|
CVE-2018-1000181
|
2024-11-21 12:39 |
2018-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
