CVE-2022-43434 Jenkins NeuVector Vulnerability Scanner Plugin 1.20 and earlier disables Content-Security-Policy protection for user-generated content.
This can be dangerous if a user uploads their own content to a shared hosting environment, for example. Users can turn off the content security
CVE-2022-43419 Katalon Plugin 1.0.32 and earlier stores API keys unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Extended Read permission.
This may pose a risk to API keys stored in Jenkins. It is recommended that any sensitive key be stored in a keystore or its
CVE-2022-3606 A vulnerability was found in the Linux Kernel. It is categorized as a problematic issue. The BPF library's function find_prog_by_sec_insn can be used to crash the system.
This issue has been assigned CVSS score of 5.1. Linux is the most widely used Operating System for servers, cloud, and data centers. It
CVE-2022-21630 Vulnerability in Oracle JD Edwards tools product 9.2.6.4 and earlier.
Due to the risk of exploitation, publishing detailed information of this vulnerability is not recommended. However, the Common Vulnerabilities and Exposures project has assigned this
CVE-2022-39424 Vulnerability in Oracle VirtualBox that affects prior to 6.1.40 versions.
VU#110137 - CVE-2017-5407 (Redirected from ). VU#110137 - CVE-2017-5407 (Redirected from Oracle Virtualization ). Redirection occurs when an attacker with VRDP access to an Oracle
Episode
00:00:00
00:00:00