[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-43401":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":21,"downstream":22,"duplicates":31,"related":32,"reserved_at":9,"published_at":33,"modified_at":34,"state":35,"summary":36,"references_raw":45,"kevs":69,"epss":70,"epss_history":73,"metrics":336,"affected":348},"CVE-2022-43401","A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[20],"GHSA-7vr5-72w7-q6jc",[],[23,25,27,29],{"_key":24},"RHSA-2023:1064",{"_key":26},"RHSA-2023:0560",{"_key":28},"RHSA-2023:0777",{"_key":30},"RHSA-2023:3198",[],[],"2022-10-19T00:00:00.000Z","2024-08-03T13:32:57.390Z","Modified",{"cisa_kev":37,"cisa_ransomware":37,"cisa_vendor":9,"epss_severity":38,"epss_score":39,"severity":40,"severity_score":41,"severity_version":42,"severity_source":43,"severity_vector":44,"severity_status":35},false,"low",0.00229,"critical",9.9,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",[46,52,60,65],{"url":47,"sources":48,"tags":50},"https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29",[49,43],"cve.org",[51],"Vendor Advisory",{"url":53,"sources":54,"tags":56},"http://www.openwall.com/lists/oss-security/2022/10/19/3",[49,43,55],"osv_maven",[57,58,59],"Mailing List","Third Party Advisory","WEB",{"url":61,"sources":62,"tags":63},"https://nvd.nist.gov/vuln/detail/CVE-2022-43401",[55],[64],"Advisory",{"url":66,"sources":67,"tags":68},"https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)",[55],[59],[],{"date":71,"score":39,"percentile":72},"2026-06-04",0.45735,[74,78,81,84,87,90,93,96,99,102,105,108,111,114,117,121,124,127,130,133,136,139,142,145,148,151,154,157,160,163,165,168,171,174,176,179,182,185,188,191,194,196,199,202,205,208,211,213,216,219,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,267,270,272,274,276,279,282,284,286,289,292,295,298,301,304,307,310,313,316,319,322,325,328,330,333],{"date":75,"score":76,"percentile":77},"2025-11-04",0.00157,0.37073,{"date":79,"score":76,"percentile":80},"2025-11-05",0.37063,{"date":82,"score":76,"percentile":83},"2025-11-06",0.3706,{"date":85,"score":76,"percentile":86},"2025-11-07",0.37083,{"date":88,"score":76,"percentile":89},"2025-11-08",0.37082,{"date":91,"score":76,"percentile":92},"2025-11-09",0.37066,{"date":94,"score":76,"percentile":95},"2025-11-10",0.37031,{"date":97,"score":76,"percentile":98},"2025-11-11",0.37057,{"date":100,"score":76,"percentile":101},"2025-11-12",0.37097,{"date":103,"score":76,"percentile":104},"2025-11-13",0.37108,{"date":106,"score":76,"percentile":107},"2025-11-14",0.37109,{"date":109,"score":76,"percentile":110},"2025-11-15",0.37106,{"date":112,"score":76,"percentile":113},"2025-11-16",0.3709,{"date":115,"score":76,"percentile":116},"2025-11-17",0.3707,{"date":118,"score":119,"percentile":120},"2025-11-18",0.01344,0.78344,{"date":122,"score":119,"percentile":123},"2025-11-19",0.78352,{"date":125,"score":119,"percentile":126},"2025-11-20",0.7836,{"date":128,"score":76,"percentile":129},"2025-11-21",0.37074,{"date":131,"score":76,"percentile":132},"2025-11-22",0.37075,{"date":134,"score":76,"percentile":135},"2025-11-23",0.37042,{"date":137,"score":76,"percentile":138},"2025-11-24",0.37026,{"date":140,"score":76,"percentile":141},"2025-11-25",0.37029,{"date":143,"score":76,"percentile":144},"2025-11-26",0.37024,{"date":146,"score":76,"percentile":147},"2025-11-27",0.37036,{"date":149,"score":76,"percentile":150},"2025-11-28",0.37017,{"date":152,"score":76,"percentile":153},"2025-11-29",0.36999,{"date":155,"score":76,"percentile":156},"2025-11-30",0.36983,{"date":158,"score":76,"percentile":159},"2025-12-01",0.37099,{"date":161,"score":76,"percentile":162},"2025-12-02",0.37107,{"date":164,"score":76,"percentile":110},"2025-12-03",{"date":166,"score":76,"percentile":167},"2025-12-04",0.36978,{"date":169,"score":76,"percentile":170},"2025-12-05",0.37013,{"date":172,"score":76,"percentile":173},"2025-12-06",0.3701,{"date":175,"score":76,"percentile":156},"2025-12-07",{"date":177,"score":76,"percentile":178},"2025-12-08",0.36995,{"date":180,"score":76,"percentile":181},"2025-12-09",0.37034,{"date":183,"score":76,"percentile":184},"2025-12-10",0.37093,{"date":186,"score":76,"percentile":187},"2025-12-11",0.37121,{"date":189,"score":76,"percentile":190},"2025-12-12",0.3716,{"date":192,"score":76,"percentile":193},"2025-12-13",0.3714,{"date":195,"score":76,"percentile":162},"2025-12-14",{"date":197,"score":76,"percentile":198},"2025-12-15",0.37072,{"date":200,"score":76,"percentile":201},"2025-12-16",0.37102,{"date":203,"score":76,"percentile":204},"2025-12-17",0.37148,{"date":206,"score":76,"percentile":207},"2025-12-18",0.37195,{"date":209,"score":76,"percentile":210},"2025-12-19",0.37214,{"date":212,"score":76,"percentile":207},"2025-12-20",{"date":214,"score":76,"percentile":215},"2025-12-21",0.37138,{"date":217,"score":76,"percentile":218},"2025-12-22",0.37116,{"date":220,"score":76,"percentile":221},"2025-12-23",0.37112,{"date":223,"score":76,"percentile":224},"2025-12-24",0.37126,{"date":226,"score":76,"percentile":227},"2025-12-25",0.37185,{"date":229,"score":76,"percentile":230},"2025-12-26",0.37165,{"date":232,"score":76,"percentile":233},"2025-12-27",0.37188,{"date":235,"score":76,"percentile":236},"2025-12-28",0.37085,{"date":238,"score":76,"percentile":239},"2025-12-29",0.37061,{"date":241,"score":76,"percentile":242},"2025-12-30",0.37052,{"date":244,"score":76,"percentile":245},"2025-12-31",0.37114,{"date":247,"score":76,"percentile":248},"2026-01-01",0.37264,{"date":250,"score":76,"percentile":251},"2026-01-02",0.37236,{"date":253,"score":76,"percentile":254},"2026-01-03",0.37225,{"date":256,"score":76,"percentile":257},"2026-01-04",0.37062,{"date":259,"score":76,"percentile":260},"2026-01-05",0.37041,{"date":262,"score":76,"percentile":263},"2026-01-06",0.37047,{"date":265,"score":76,"percentile":266},"2026-01-07",0.37076,{"date":268,"score":76,"percentile":269},"2026-01-08",0.37101,{"date":271,"score":76,"percentile":184},"2026-01-09",{"date":273,"score":76,"percentile":101},"2026-01-10",{"date":275,"score":76,"percentile":116},"2026-01-11",{"date":277,"score":76,"percentile":278},"2026-01-12",0.37022,{"date":280,"score":76,"percentile":281},"2026-01-13",0.36998,{"date":283,"score":76,"percentile":263},"2026-01-14",{"date":285,"score":76,"percentile":181},"2026-01-15",{"date":287,"score":76,"percentile":288},"2026-01-16",0.37056,{"date":290,"score":76,"percentile":291},"2026-01-17",0.37035,{"date":293,"score":76,"percentile":294},"2026-01-18",0.36977,{"date":296,"score":76,"percentile":297},"2026-01-19",0.36925,{"date":299,"score":76,"percentile":300},"2026-01-20",0.36904,{"date":302,"score":76,"percentile":303},"2026-01-21",0.36882,{"date":305,"score":76,"percentile":306},"2026-01-22",0.36865,{"date":308,"score":76,"percentile":309},"2026-01-23",0.36926,{"date":311,"score":76,"percentile":312},"2026-01-24",0.36931,{"date":314,"score":76,"percentile":315},"2026-01-25",0.36873,{"date":317,"score":76,"percentile":318},"2026-01-26",0.36804,{"date":320,"score":76,"percentile":321},"2026-01-27",0.36801,{"date":323,"score":76,"percentile":324},"2026-01-28",0.36787,{"date":326,"score":76,"percentile":327},"2026-01-29",0.3676,{"date":329,"score":76,"percentile":327},"2026-01-30",{"date":331,"score":76,"percentile":332},"2026-01-31",0.36763,{"date":334,"score":76,"percentile":335},"2026-02-01",0.36867,[337,342],{"source":43,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":338,"cvss_v4_0":9},{"baseScore":41,"baseSeverity":339,"vectorString":44,"impactScore":340,"exploitabilityScore":341},"CRITICAL",10,7.9,{"source":55,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":343,"cvss_v4_0":9},{"baseScore":344,"baseSeverity":9,"vectorString":345,"impactScore":346,"exploitabilityScore":347},8.8,"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",9.8,7.2,[349,361,369,381],{"ecosystem":9,"name":350,"vendor":351,"product":352,"cpe_part":353,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":354},"Jenkins Script Security Plugin","jenkins project","jenkins script security plugin","a",[355],{"version":356,"is_range":357,"range_type":49,"version_start":358,"version_start_type":359,"version_end":360,"version_end_type":359,"fixed_in":9},">= unspecified, \u003C= 1183.v774b_0b_0a_a_451",true,"unspecified","including","1183.v774b_0b_0a_a_451",{"ecosystem":9,"name":362,"vendor":363,"product":364,"cpe_part":353,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":365},"script security","jenkins","script_security",[366],{"version":367,"is_range":357,"range_type":368,"version_start":9,"version_start_type":9,"version_end":360,"version_end_type":359,"fixed_in":9},"lte1183.v774b_0b_0a_a_451","cpe",{"ecosystem":370,"name":371,"vendor":372,"product":373,"cpe_part":9,"purl_type":374,"purl_namespace":372,"purl_name":373,"source":9,"versions":375},"Maven","org.jenkins-ci.plugins:script-security","org.jenkins-ci.plugins","script-security","maven",[376],{"version":377,"is_range":357,"range_type":378,"version_start":9,"version_start_type":9,"version_end":379,"version_end_type":380,"fixed_in":9},"lt1184_v85d16b_d851b_3","ecosystem","1184.v85d16b_d851b_3","excluding",{"ecosystem":370,"name":382,"vendor":383,"product":384,"cpe_part":9,"purl_type":374,"purl_namespace":383,"purl_name":384,"source":9,"versions":385},"org.jenkins-ci.plugins.workflow:workflow-cps","org.jenkins-ci.plugins.workflow","workflow-cps",[386],{"version":387,"is_range":357,"range_type":378,"version_start":9,"version_start_type":9,"version_end":388,"version_end_type":380,"fixed_in":9},"lt2803_v1a_f77ffcc773","2803.v1a_f77ffcc773"]