cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-10338,https://securityvulnerability.io/vulnerability/CVE-2019-10338,,"A cross-site request forgery vulnerability in Jenkins JX Resources Plugin 1.0.36 and earlier in GlobalPluginConfiguration#doValidateClient allowed attackers to have Jenkins connect to an attacker-specified Kubernetes server, potentially leaking credentials.",Jenkins,Jenkins Jx Resources Plugin,8.8,HIGH,0.003060000017285347,false,,false,false,false,,,false,false,,2019-06-11T13:15:27.000Z,0
CVE-2019-10339,https://securityvulnerability.io/vulnerability/CVE-2019-10339,,"A missing permission check in Jenkins JX Resources Plugin 1.0.36 and earlier in GlobalPluginConfiguration#doValidateClient allowed users with Overall/Read access to have Jenkins connect to an attacker-specified Kubernetes server, potentially leaking credentials.",Jenkins,Jenkins Jx Resources Plugin,8.8,HIGH,0.0031799999997019768,false,,false,false,false,,,false,false,,2019-06-11T13:15:27.000Z,0