[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 194770 Download | Alert*

The host is installed with Jenkins LTS through 2.235.4 or Jenkins rolling release through 2.242 and is prone to a buffer corruption vulnerability. A flaw is present in the application, which fails to properly handle issues in Jetty. Successful exploitation could allow unauthenticated attackers to obtain HTTP response headers that may include sensitive data intended for another user.

The host is installed with Jenkins LTS through 2.235.3 or Jenkins rolling release through 2.251 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle escaping the tooltip content of help icons. Successful exploitation could allow attackers to cause a stored XSS vulnerability.

The host is installed with Jenkins LTS through 2.235.3 or Jenkins rolling release through 2.251 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle escaping the project naming strategy description. Successful exploitation could allow attackers to cause a stored XSS vulnerability.

The host is installed with Jenkins LTS through 2.235.3 or Jenkins rolling release through 2.251 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle escaping remote address of the host starting a build via 'Trigger builds remotely'. Successful exploitation could allow attackers to cause a stored XSS vulnerability.

The host is missing a security update according to Wireshark Advisory. The update is required to fix a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a malformed packet trace file. Successful exploitation allows attackers to make Wireshark crash.

Solaris 11 - (CVE-2020-15466)

wireshark: network traffic analyzer - meta-package Several security issues were fixed in Wireshark.

In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan/dissectors/packet-kafka.c by avoiding a double free during LZ4 decompression.

The host is installed with Wireshark 3.2.0 through 3.2.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a malformed packet trace file. Successful exploitation allows attackers to make Wireshark crash.

The host is installed with Jenkins LTS through 2.235.1 or Jenkins rolling release through 2.244 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle escaping 'href' attribute of links to downstream jobs displayed in the build console page. Successful exploitation could allow attackers to cause a stored XSS vulnerability.


Pages:      Start    7795    7796    7797    7798    7799    7800    7801    7802    7803    7804    7805    7806    7807    7808    ..   19476

© SecPod Technologies