Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2019-16574
- EPSS 0.05%
- Published 17.12.2019 15:15:24
- Last modified 21.11.2024 04:30:51
A missing permission check in Jenkins Alauda DevOps Pipeline Plugin 2.3.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capt...
8.8
CVE-2019-16573
- EPSS 0.11%
- Published 17.12.2019 15:15:23
- Last modified 21.11.2024 04:30:51
A cross-site request forgery vulnerability in Jenkins Alauda DevOps Pipeline Plugin 2.3.2 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credent...
1