Jenkins Maven Metadata — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Maven Metadata, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-34190 — CVSS 5.4 (medium): Jenkins Maven Metadata Plugin for Jenkins CI server Plugin 2.1 and earlier does not escape the name and description of List maven artifact…
CVE-2022-36905 — CVSS 5.4 (medium): Jenkins Maven Metadata Plugin for Jenkins CI server Plugin 2.2 and earlier does not perform URL validation for the Repository Base URL of…