Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2020-2191
- EPSS 0.02%
- Published 03.06.2020 13:15:10
- Last modified 21.11.2024 05:24:54
Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier does not check permissions on API endpoints that allow adding and removing agent labels.
6.5
CVE-2020-2192
- EPSS 0.41%
- Published 03.06.2020 13:15:10
- Last modified 21.11.2024 05:24:54
A cross-site request forgery vulnerability in Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier allows attackers to add or remove agent labels.
9.3
CVE-2019-10309
- EPSS 0.07%
- Published 30.04.2019 13:29:05
- Last modified 21.11.2024 04:18:51
Jenkins Self-Organizing Swarm Plug-in Modules Plugin clients that use UDP broadcasts to discover Jenkins masters do not prevent XML External Entity processing when processing the responses, allowing unauthorized attackers on the same network to read ...
1