Jenkins Embeddable Build Status — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Embeddable Build Status, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-34179 — CVSS 7.5 (high): Jenkins Embeddable Build Status Plugin 2.0.3 and earlier allows specifying a `style` query parameter that is used to choose a different SVG…
CVE-2022-34180 — CVSS 7.5 (high): Jenkins Embeddable Build Status Plugin 2.0.3 and earlier does not correctly perform the ViewStatus permission check in the HTTP endpoint it…
CVE-2019-10346 — CVSS 6.1 (medium): A reflected cross site scripting vulnerability in Jenkins Embeddable Build Status Plugin 2.0.1 and earlier allowed attackers inject…
CVE-2022-34178 — CVSS 6.1 (medium): Jenkins Embeddable Build Status Plugin 2.0.3 allows specifying a 'link' query parameter that build status badges will link to, without…