Количество 3
Количество 3
CVE-2019-1003027
A server-side request forgery vulnerability exists in Jenkins OctopusDeploy Plugin 1.8.1 and earlier in OctopusDeployPlugin.java that allows attackers with Overall/Read permission to have Jenkins connect to an attacker-specified URL and obtain the HTTP response code if successful, and exception error message otherwise.
CVE-2019-1003027
A server-side request forgery vulnerability exists in Jenkins OctopusD ...
GHSA-5v2j-w677-j4mp
SSRF vulnerability due to missing permission check in Jenkins OctopusDeploy Plugin
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-1003027 A server-side request forgery vulnerability exists in Jenkins OctopusDeploy Plugin 1.8.1 and earlier in OctopusDeployPlugin.java that allows attackers with Overall/Read permission to have Jenkins connect to an attacker-specified URL and obtain the HTTP response code if successful, and exception error message otherwise. | CVSS3: 4.3 | 0% Низкий | почти 7 лет назад |
| CVE-2019-1003027 A server-side request forgery vulnerability exists in Jenkins OctopusD ... | CVSS3: 4.3 | 0% Низкий | почти 7 лет назад |
| GHSA-5v2j-w677-j4mp SSRF vulnerability due to missing permission check in Jenkins OctopusDeploy Plugin | CVSS3: 4.3 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу