Every CVE whose affected-product data names Jenkins Sounds, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-2097 — CVSS 8.8 (high): Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with…
CVE-2020-2098 — CVSS 8.8 (high): A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the…