cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-25199,https://securityvulnerability.io/vulnerability/CVE-2022-25199,Insufficient Access Control in Jenkins SCP Publisher Plugin Affects Remote Server Connections,"A flaw in the Jenkins SCP Publisher Plugin permits unauthorized users with Overall/Read permissions to connect to any SSH server, using arbitrary credentials specified by the attacker. This vulnerability poses significant risks, as it allows attackers to exploit the connection for malicious purposes, potentially compromising sensitive information and system integrity.",Jenkins,Jenkins Scp Publisher Plugin,8.8,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2022-02-15T16:11:30.000Z,0
CVE-2022-25198,https://securityvulnerability.io/vulnerability/CVE-2022-25198,Cross-Site Request Forgery Vulnerability in Jenkins SCP Publisher Plugin,"The SCP Publisher Plugin for Jenkins has a cross-site request forgery vulnerability that enables attackers to force the plugin to connect to an SSH server of their choice using credentials provided by the attacker. This flaw poses significant risks as it allows unauthorized access and actions on behalf of authenticated users, potentially leading to data breaches or compromise of the Jenkins environment.",Jenkins,Jenkins Scp Publisher Plugin,8.8,HIGH,0.0007300000288523734,false,,false,false,false,,,false,false,,2022-02-15T16:11:29.000Z,0