cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-32981,https://securityvulnerability.io/vulnerability/CVE-2023-32981,Arbitrary File Write Vulnerability in Jenkins Pipeline Utility Steps Plugin,"Jenkins Pipeline Utility Steps Plugin versions 2.15.2 and earlier are vulnerable to an arbitrary file write issue. This vulnerability allows attackers to send specially crafted archive parameters, enabling them to create or modify files on the agent's file system with user-defined content, potentially leading to severe implications for system integrity and security.",Jenkins,Jenkins Pipeline Utility Steps Plugin,8.8,HIGH,0.0010900000343099236,false,,false,false,false,,,false,false,,2023-05-16T16:15:00.000Z,0
CVE-2022-45381,https://securityvulnerability.io/vulnerability/CVE-2022-45381,Insecure File Access in Jenkins Pipeline Utility Steps Plugin from CloudBees,"The Jenkins Pipeline Utility Steps Plugin versions 2.13.1 and prior have a significant vulnerability due to inadequate restrictions on enabled prefix interpolators. This oversight allows attackers, who can configure Pipelines, to exploit the 'file:' prefix interpolator by default. Consequently, they may gain unauthorized access to read sensitive files from the underlying Jenkins controller file system, leading to potential data leaks and system breaches.",Jenkins,Jenkins Pipeline Utility Steps Plugin,8.1,HIGH,0.0009299999801442027,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0