Every CVE whose affected-product data names Jenkins Delphix, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-10453 — CVSS 7.8 (high): Jenkins Delphix Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by…
CVE-2023-40345 — CVSS 6.5 (medium): Jenkins Delphix Plugin 3.0.2 and earlier does not set the appropriate context for credentials lookup, allowing attackers with Overall/Read…
CVE-2024-28161 — CVSS 5.3 (medium): In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control…
CVE-2023-40344 — CVSS 4.3 (medium): A missing permission check in Jenkins Delphix Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to enumerate…
CVE-2024-28162 — CVSS 4.2 (medium): In Jenkins Delphix Plugin 3.0.1 through 3.1.0 (both inclusive) a global option for administrators to enable or disable SSL/TLS certificate…