cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-25190,https://securityvulnerability.io/vulnerability/CVE-2022-25190,Missing Permission Check in Jenkins Conjur Secrets Plugin by Jenkins,"The Jenkins Conjur Secrets Plugin is susceptible to a missing permission check that permits users with Overall/Read permission to enumerate credentials IDs stored in Jenkins. This vulnerability could enable unauthorized users to access sensitive information about stored credentials, potentially leading to further exploitation of Jenkins environments.",Jenkins,Jenkins Conjur Secrets Plugin,4.3,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2022-02-15T16:11:17.000Z,0
CVE-2022-23117,https://securityvulnerability.io/vulnerability/CVE-2022-23117,Secrets Exposure in Jenkins Conjur Secrets Plugin by CloudBees,"The Jenkins Conjur Secrets Plugin 1.0.9 and earlier contains a vulnerability that enables attackers with control over agent processes to access all username and password credentials stored on the Jenkins controller. This significant security flaw exposes sensitive information, potentially compromising the integrity of the Jenkins environment and its associated applications.",Jenkins,Jenkins Conjur Secrets Plugin,7.5,HIGH,0.0014900000533089042,false,,false,false,false,,,false,false,,2022-01-12T19:06:25.000Z,0
CVE-2022-23116,https://securityvulnerability.io/vulnerability/CVE-2022-23116,Secrets Decryption Vulnerability in Jenkins Conjur Plugin by Jenkins,"The Conjur Secrets Plugin for Jenkins before version 1.0.9 contains a vulnerability that allows attackers with control over agent processes to decrypt secrets that have been stored in Jenkins. This access could lead to severe data breaches if exploited, as sensitive information could be revealed without proper authorization. It is imperative for users of this plugin to update to the latest version to mitigate these risks and enhance their security posture.",Jenkins,Jenkins Conjur Secrets Plugin,7.5,HIGH,0.0021200000774115324,false,,false,false,false,,,false,false,,2022-01-12T19:06:23.000Z,0