Vulnerabilidades em Synopsys
8 resultadosCVE-2023-23849HIGHVersions of Coverity Connect prior to 2022.12.0 are vulnerable to an unauthenticated Cross-Site Scripting vulnerability. Any web service hosEPSS 1.3%CVE-2022-30278—A vulnerability in Black Duck Hub’s embedded MadCap Flare documentation files could allow an unauthenticated remote attacker to conduct a crEPSS 0.8%CVE-2023-2158CRITICALImpersonation through User-Controlled TokenEPSS 0.6%CVE-2023-23848MEDIUMMissing permission checks in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allow attackers with Overall/Read permission to connect to aEPSS 0.5%CVE-2023-23850MEDIUMA missing permission check in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to enumerate EPSS 0.5%CVE-2023-1663MEDIUMAuthenticated Resources Accessible via Forced BrowsingEPSS 0.4%CVE-2023-23847LOWA cross-site request forgery (CSRF) vulnerability in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers to connect to an atEPSS 0.4%CVE-2024-0226MEDIUMStored Cross-Site Scripting in Synopsys SeekerEPSS 0.3%