Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.4
CVE-2020-2146
- EPSS 0.03%
- Published 09.03.2020 16:15:13
- Last modified 21.11.2024 05:24:47
Jenkins Mac Plugin 1.1.0 and earlier does not validate SSH host keys when connecting agents created by the plugin, enabling man-in-the-middle attacks.
4.3
CVE-2020-2147
- EPSS 0.31%
- Published 09.03.2020 16:15:13
- Last modified 21.11.2024 05:24:47
A cross-site request forgery vulnerability in Jenkins Mac Plugin 1.1.0 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials.
4.3
CVE-2020-2148
- EPSS 0.05%
- Published 09.03.2020 16:15:13
- Last modified 21.11.2024 05:24:47
A missing permission check in Jenkins Mac Plugin 1.1.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials.
1