Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1
CVE-2025-32754
- EPSS 0.06%
- Published 10.04.2025 11:20:29
- Last modified 02.05.2025 19:39:07
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert ...
4.3
CVE-2022-20620
- EPSS 0.97%
- Published 12.01.2022 20:15:09
- Last modified 21.11.2024 06:43:10
Missing permission checks in Jenkins SSH Agent Plugin 1.23 and earlier allows attackers with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins.
6.5
CVE-2018-1999036
- EPSS 0.2%
- Published 01.08.2018 13:29:00
- Last modified 21.11.2024 03:57:06
An exposure of sensitive information vulnerability exists in Jenkins SSH Agent Plugin 1.15 and earlier in SSHAgentStepExecution.java that exposes the SSH private key password to users with permission to read the build log.
1