6.8CVSS
6.6AI Score
0.001EPSS
9.8CVSS
9.3AI Score
0.001EPSS
7.1CVSS
7.3AI Score
0.01EPSS
5.8CVSS
5.2AI Score
0.0004EPSS
5.5CVSS
5.4AI Score
0.003EPSS
Jenkins Nuget Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE)...
9.1CVSS
9.2AI Score
0.002EPSS
An elevation of privilege vulnerability exists in Azure Active Directory Authentication Library On-Behalf-Of flow, in the way the library caches tokens. This vulnerability allows an authenticated attacker to perform actions in context of another user. The authenticated attacker can exploit this...
8.8CVSS
8.5AI Score
0.001EPSS
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify contents of the intermediate build folder (by default "obj"), aka 'NuGet Package Manager Tampering...
5.5CVSS
5.4AI Score
0.0004EPSS
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering...
6.5CVSS
6.1AI Score
0.001EPSS