cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-49654,https://securityvulnerability.io/vulnerability/CVE-2023-49654,Missing Permission Checks in Jenkins MATLAB Plugin by Jenkins,"The Jenkins MATLAB Plugin, version 2.11.0 and earlier, is affected by a security flaw that allows unauthorized attackers to exploit missing permission checks. This vulnerability enables attackers to instruct Jenkins to parse an XML file directly from the Jenkins controller's file system, potentially leading to unauthorized access or disclosure of sensitive information. Proper safeguards are necessary to mitigate these risks and protect user data from potential exploitation.",Jenkins,Jenkins MATLAB Plugin,9.8,CRITICAL,0.0021899999119341373,false,false,false,false,,false,false,2023-11-29T14:15:00.000Z,0
CVE-2023-49656,https://securityvulnerability.io/vulnerability/CVE-2023-49656,XML External Entity Vulnerability in Jenkins MATLAB Plugin by Jenkins,"The Jenkins MATLAB Plugin version 2.11.0 and earlier is vulnerable to XML external entity (XXE) attacks due to improper configuration of its XML parser. This flaw allows attackers to exploit the parser, potentially exposing sensitive data or enabling unauthorized actions within the Jenkins environment. It is crucial for users to upgrade to the latest version and apply necessary security patches to mitigate the risks associated with this vulnerability.",Jenkins,Jenkins MATLAB Plugin,9.8,CRITICAL,0.0015399999683722854,false,false,false,false,,false,false,2023-11-29T14:15:00.000Z,0
CVE-2023-49655,https://securityvulnerability.io/vulnerability/CVE-2023-49655,Cross-Site Request Forgery in Jenkins MATLAB Plugin by Jenkins,"A cross-site request forgery vulnerability exists in the Jenkins MATLAB Plugin, allowing malicious attackers to exploit the plugin. If successfully exploited, the vulnerability enables unauthorized parsing of XML files from the Jenkins controller file system, potentially exposing sensitive information or enabling further attacks. Users of Jenkins MATLAB Plugin versions 2.11.0 and earlier are urged to update to secure versions as recommended in the official Jenkins Security Advisory.",Jenkins,Jenkins MATLAB Plugin,8.8,HIGH,0.0006600000197067857,false,false,false,false,,false,false,2023-11-29T14:15:00.000Z,0