Jenkins Failed Job Deactivator — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Failed Job Deactivator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-34817 — CVSS 4.3 (medium): A cross-site request forgery (CSRF) vulnerability in Jenkins Failed Job Deactivator Plugin 1.2.1 and earlier allows attackers to disable…
CVE-2022-34818 — CVSS 4.3 (medium): Jenkins Failed Job Deactivator Plugin 1.2.1 and earlier does not perform permission checks in several views and HTTP endpoints, allowing…