Every CVE whose affected-product data names Jenkins Findbugs, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-1000011 — CVSS 8.8 (high): Jenkins FindBugs Plugin 4.71 and earlier processes XML external entities in files it parses as part of the build process, allowing…
CVE-2020-2317 — CVSS 5.4 (medium): Jenkins FindBugs Plugin 5.0.0 and earlier does not escape the annotation message in tooltips, resulting in a stored cross-site scripting…