Every CVE whose affected-product data names Jenkins Git Client, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2019-10392 — CVSS 8.8 (high): Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git…
CVE-2022-36881 — CVSS 8.1 (high): Jenkins Git client Plugin 3.11.0 and earlier does not perform SSH host key verification when connecting to Git repositories via SSH…
CVE-2025-67640 — CVSS 5.0 (medium): Jenkins Git client Plugin 6.4.0 and earlier does not not correctly escape the path to the workspace directory as part of an argument in a…
CVE-2026-57282 — CVSS 5.0 (medium): Jenkins Git client Plugin 6.6.0 and earlier does not correctly escape the workspace directory name when it is embedded into a generated SSH…
CVE-2025-58458 — CVSS 4.3 (medium): In Jenkins Git client Plugin 6.3.2 and earlier, except 6.1.4 and 6.2.1, Git URL field form validation responses differ based on whether the…
CVE-2017-1000242 — CVSS 3.3 (low): Jenkins Git Client Plugin 2.4.2 and earlier creates temporary file with insecure permissions resulting in information disclosure