cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-23118,https://securityvulnerability.io/vulnerability/CVE-2022-23118,Command Injection Vulnerability in Jenkins Debian Package Builder Plugin,"The Jenkins Debian Package Builder Plugin allows agents to invoke command-line `git` at a path determined by an attacker. If an attacker gains control over an agent process, they can execute arbitrary operating system commands on the Jenkins controller, leading to significant security risks.",Jenkins,Jenkins Debian Package Builder Plugin,8.8,HIGH,0.0009299999801442027,false,,false,false,false,,,false,false,,2022-01-12T19:06:27.000Z,0
CVE-2020-2125,https://securityvulnerability.io/vulnerability/CVE-2020-2125,,Jenkins Debian Package Builder Plugin 1.6.11 and earlier stores a GPG passphrase unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system.,Jenkins,Jenkins Debian Package Builder Plugin,4.3,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2020-02-12T14:35:47.000Z,0