Severity High Analysis Summary GandCrab – a ransomware-as-a-service variant – was discovered in early 2018. At least five versions of GandCrab have been created since its […]

Severity High Analysis Summary TrickBot is a modular banking Trojan that has been active since 2016. It is primarily distributed through phishing campaigns and is known […]

Severity High Analysis Summary CVE-2023-24426 Jenkins Azure AD Plugin could allow a remote attacker to bypass security restrictions, caused by not invalidate the existing session on […]

Severity High Analysis Summary CVE-2023-24424 Jenkins OpenId Connect Authentication Plugin could allow a remote attacker to bypass security restrictions, caused by not invalidate the existing session […]

Severity Medium Analysis Summary CVE-2023-24429 CVSS:7.1 Jenkins Semantic Versioning Plugin could allow a remote authenticated attacker to obtain sensitive information, caused by improper handling of XML […]

Severity High Analysis Summary CVE-2023-24422 Jenkins Script Security Plugin could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a sandbox […]

Severity High Analysis Summary CVE-2022-46684 Jenkins Checkmarx Plugin is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit […]

Severity High Analysis Summary Shuckworm APT – aka Actinium, Armageddon, Primitive Bear, Gamaredon, and Trident Ursa – is a Russia-backed advanced persistent threat (APT) that has […]

Severity High Analysis Summary CVE-2022-46682 CVSS:7.1 Jenkins Plot Plugin could allow a remote authenticated attacker to obtain sensitive information, caused by improper handling of XML external […]