Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

vendredi 3 juillet 2020

ElasticBox Jenkins Kubernetes CI-CD Plugin up to 1.3 on Jenkins YAML Parser Remote Code Execution

A vulnerability classified as critical has been found in ElasticBox Jenkins Kubernetes CI-CD Plugin up to 1.3 on Jenkins (Virtualization Software). This affects an unknown code block of the component YAML Parser. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 95

x

Événements SSI