Jenkins Paaslane Estimate — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Paaslane Estimate, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-50778 — CVSS 8.8 (high): A cross-site request forgery (CSRF) vulnerability in Jenkins PaaSLane Estimate Plugin 1.0.4 and earlier allows attackers to connect to an…
CVE-2023-50776 — CVSS 4.3 (medium): Jenkins PaaSLane Estimate Plugin 1.0.4 and earlier stores PaaSLane authentication tokens unencrypted in job config.xml files on the Jenkins…
CVE-2023-50777 — CVSS 4.3 (medium): Jenkins PaaSLane Estimate Plugin 1.0.4 and earlier does not mask PaaSLane authentication tokens displayed on the job configuration form…
CVE-2023-50779 — CVSS 4.3 (medium): Missing permission checks in Jenkins PaaSLane Estimate Plugin 1.0.4 and earlier allow attackers with Overall/Read permission to connect to…