Every CVE whose affected-product data names Jenkins Support Core, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-16539 — CVSS 6.5 (medium): A missing permission check in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete support…
CVE-2019-16540 — CVSS 6.5 (medium): A path traversal vulnerability in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete…
CVE-2022-25187 — CVSS 6.5 (medium): Jenkins Support Core Plugin 2.79 and earlier does not redact some sensitive information in the support bundle.
CVE-2022-45383 — CVSS 6.5 (medium): An incorrect permission check in Jenkins Support Core Plugin 1206.v14049fa_b_d860 and earlier allows attackers with Support/DownloadBundle…
CVE-2021-21621 — CVSS 5.3 (medium): Jenkins Support Core Plugin 2.72 and earlier provides the serialized user authentication as part of the "About user (basic authentication…