cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-2216,https://securityvulnerability.io/vulnerability/CVE-2024-2216,Missing Permission Check in Jenkins Plugin Allows Attackers to Reconfigure Future Build Steps,"A missing permission check in an HTTP endpoint in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified TCP or Unix socket URL, and to reconfigure the plugin using the provided connection test parameters, affecting future build step executions.",Jenkins,Jenkins Docker-build-step Plugin,,,0.0004299999854993075,false,false,false,false,,false,false,2024-03-06T17:01:52.616Z,0
CVE-2024-2215,https://securityvulnerability.io/vulnerability/CVE-2024-2215,CSRF Vulnerability in Jenkins Docker-Build-Step Plugin Allows Attackers to Reconfigure Plugin and Affect Future Build Step Executions,"A cross-site request forgery (CSRF) vulnerability in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers to connect to an attacker-specified TCP or Unix socket URL, and to reconfigure the plugin using the provided connection test parameters, affecting future build step executions.",Jenkins,Jenkins Docker-build-step Plugin,,,0.0004299999854993075,false,false,false,false,,false,false,2024-03-06T17:01:52.007Z,0