Jenkins Contrast Continuous Application Security — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Contrast Continuous Application Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-43420 — CVSS 5.4 (medium): Jenkins Contrast Continuous Application Security Plugin 3.9 and earlier does not escape data returned from the Contrast service when…
CVE-2026-57297 — CVSS 4.3 (medium): A missing permission check in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allows attackers with Overall/Read…
CVE-2026-57299 — CVSS 4.3 (medium): Missing permission checks in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allow attackers with Overall/Read…