Jenkins Pipeline: Input Step — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Pipeline: Input Step, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-43407 — CVSS 8.8 (high): Jenkins Pipeline: Input Step Plugin 451.vf1a_a_4f405289 and earlier does not restrict or sanitize the optionally specified ID of the…
CVE-2022-34177 — CVSS 7.5 (high): Jenkins Pipeline: Input Step Plugin 448.v37cea_9a_10a_70 and earlier archives files uploaded for `file` parameters for Pipeline `input`…