cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-30952,https://securityvulnerability.io/vulnerability/CVE-2022-30952,Pipeline SCM API Vulnerability in Jenkins Blue Ocean Plugin,"The Jenkins Blue Ocean Plugin, specifically the Pipeline SCM API, allows unauthorized access to sensitive credentials stored in per-user credential stores. Attackers with Job/Configure permissions can exploit this vulnerability to retrieve credentials belonging to any user by specifying arbitrary credential IDs. This poses significant risks to the security of the Jenkins environment, potentially leading to further attacks or data breaches.",Jenkins,Jenkins Pipeline Scm Api For Blue Ocean Plugin,6.5,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2022-05-17T00:00:00.000Z,0