All 3 CVE vulnerabilities found in woodpecker, with AI-generated Chinese analysis, references, and POCs.
Vendor: woodpecker-ci
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-41122 | Custom environment variables allow to alter execution flow of plugins in Woodpecker CWE-74 | 7.5 | High | 2024-07-19 |
| CVE-2024-41121 | Custom workspace allow to overwrite plugin entrypoint executable in Woodpecker CWE-74 | 8.8 | High | 2024-07-19 |
| CVE-2023-40034 | Repositoty takeover in woodpecker-ci CWE-20 | 8.1 | High | 2023-08-16 |
All 3 known CVE vulnerabilities affecting woodpecker with full Chinese analysis, references, and POCs where available.