Qualys Policy Compliance vulnerabilities
2 known vulnerabilities affecting qualys/policy_compliance.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-6147MEDIUMCVSS 6.5≤ 1.0.52024-01-09
CVE-2023-6147 [MEDIUM] CWE-611 CVE-2023-6147: Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to b
Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs to utilize the plugin and configure potential a rouge e
nvd
CVE-2023-6148MEDIUMCVSS 5.4≤ 1.0.52024-01-09
CVE-2023-6148 [MEDIUM] CWE-79 CVE-2023-6148: Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to b
Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access and access to configure or edit jobs to utilize the plugin to configure a potentia
nvd