CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22512
https://notcve.org/view.php?id=CVE-2021-22512
Cross-Site Request Forgery (CSRF) vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow form validation without permission checks. Una vulnerabilidad de tipo Cross-Site Request Forgery (CSRF) en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a versión 6.7 y versiones anteriores. • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2132 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22511
https://notcve.org/view.php?id=CVE-2021-22511
Improper Certificate Validation vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow unconditionally disabling of SSL/TLS certificates. Una vulnerabilidad de comprobación inapropiada de certificado en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a versión 6.7 y versiones anteriores. • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2176 • CWE-295: Improper Certificate Validation •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22510
https://notcve.org/view.php?id=CVE-2021-22510
Reflected XSS vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects all version 6.7 and earlier versions. Una vulnerabilidad de tipo XSS reflejado en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a todas las versiones 6.7 y anteriores • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2175 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22513
https://notcve.org/view.php?id=CVE-2021-22513
Missing Authorization vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow access without permission checks. Una falta de una vulnerabilidad de autorización en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a versión 6.7 y versiones anteriores. • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2132 • CWE-862: Missing Authorization •