[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-52549":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":229,"aliases":230,"duplicate_of":9,"upstream":232,"downstream":233,"duplicates":246,"related":247,"reserved_at":9,"published_at":254,"modified_at":255,"state":256,"summary":257,"references_raw":266,"kevs":285,"epss":286,"epss_history":289,"metrics":560,"affected":570},"CVE-2024-52549","Jenkins Script Security Plugin 1367.vdf2fc45f229c and earlier, except 1365.1367.va_3b_b_89f8a_95b_ and 1362.1364.v4cf2dc5d8776, does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of files on the controller file system.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-862","Missing Authorization","The product does not perform an authorization check when an actor attempts to access a resource or perform an action.","weakness","Incomplete","Class","High",[20],{"id":21,"name":22,"techniques":23},"CAPEC-665","Exploitation of Thunderbolt Protection Flaws",[24,61,101],{"id":25,"name":26,"tactics":27,"countermeasures":34},"T1211","Exploitation for Stealth",[28,31],{"id":29,"name":30},"TA0030","Defense Evasion",{"id":32,"name":33},"TA0005","Stealth",[35,40,44,48,53,57],{"id":36,"name":37,"tactic":38},"D3-MBT","Memory Boundary Tracking",{"name":39},"Detect",{"id":41,"name":42,"tactic":43},"D3-PCSV","Process Code Segment Verification",{"name":39},{"id":45,"name":46,"tactic":47},"D3-SSC","Shadow Stack Comparisons",{"name":39},{"id":49,"name":50,"tactic":51},"D3-PSEP","Process Segment Execution Prevention",{"name":52},"Harden",{"id":54,"name":55,"tactic":56},"D3-SAOR","Segment Address Offset Randomization",{"name":52},{"id":58,"name":59,"tactic":60},"D3-SFCV","Stack Frame Canary Validation",{"name":52},{"id":62,"name":63,"tactics":64,"countermeasures":70},"T1542.002","Component Firmware",[65,66,67],{"id":29,"name":30},{"id":32,"name":33},{"id":68,"name":69},"TA0110","Persistence",[71,76,80,84,88,92,96],{"id":72,"name":73,"tactic":74},"D3-SWI","Software Inventory",{"name":75},"Model",{"id":77,"name":78,"tactic":79},"D3-AVE","Asset Vulnerability Enumeration",{"name":75},{"id":81,"name":82,"tactic":83},"D3-FEMC","Firmware Embedded Monitoring Code",{"name":39},{"id":85,"name":86,"tactic":87},"D3-FV","Firmware Verification",{"name":39},{"id":89,"name":90,"tactic":91},"D3-FBA","Firmware Behavior Analysis",{"name":39},{"id":93,"name":94,"tactic":95},"D3-SU","Software Update",{"name":52},{"id":97,"name":98,"tactic":99},"D3-RS","Restore Software",{"name":100},"Restore",{"id":102,"name":103,"tactics":104,"countermeasures":113},"T1556","Modify Authentication Process",[105,106,109,110],{"id":29,"name":30},{"id":107,"name":108},"TA0112","Defense Impairment",{"id":68,"name":69},{"id":111,"name":112},"TA0031","Credential Access",[114,118,122,126,130,134,138,142,146,150,155,159,163,167,171,176,180,184,188,193,197,201,205,209,213,217,221,225],{"id":115,"name":116,"tactic":117},"D3-CI","Configuration Inventory",{"name":75},{"id":119,"name":120,"tactic":121},"D3-NTPM","Network Traffic Policy Mapping",{"name":75},{"id":123,"name":124,"tactic":125},"D3-AM","Access Modeling",{"name":75},{"id":127,"name":128,"tactic":129},"D3-FA","File Analysis",{"name":39},{"id":131,"name":132,"tactic":133},"D3-FIM","File Integrity Monitoring",{"name":39},{"id":135,"name":136,"tactic":137},"D3-PLA","Process Lineage Analysis",{"name":39},{"id":139,"name":140,"tactic":141},"D3-PSMD","Process Self-Modification Detection",{"name":39},{"id":143,"name":144,"tactic":145},"D3-PSA","Process Spawn Analysis",{"name":39},{"id":147,"name":148,"tactic":149},"D3-SFA","System File Analysis",{"name":39},{"id":151,"name":152,"tactic":153},"D3-FEV","File Eviction",{"name":154},"Evict",{"id":156,"name":157,"tactic":158},"D3-PT","Process Termination",{"name":154},{"id":160,"name":161,"tactic":162},"D3-PS","Process Suspension",{"name":154},{"id":164,"name":165,"tactic":166},"D3-HR","Host Reboot",{"name":154},{"id":168,"name":169,"tactic":170},"D3-HS","Host Shutdown",{"name":154},{"id":172,"name":173,"tactic":174},"D3-DF","Decoy File",{"name":175},"Deceive",{"id":177,"name":178,"tactic":179},"D3-FE","File Encryption",{"name":52},{"id":181,"name":182,"tactic":183},"D3-RF","Restore File",{"name":100},{"id":185,"name":186,"tactic":187},"D3-RC","Restore Configuration",{"name":100},{"id":189,"name":190,"tactic":191},"D3-CF","Content Filtering",{"name":192},"Isolate",{"id":194,"name":195,"tactic":196},"D3-LFP","Local File Permissions",{"name":192},{"id":198,"name":199,"tactic":200},"D3-RFAM","Remote File Access Mediation",{"name":192},{"id":202,"name":203,"tactic":204},"D3-CQ","Content Quarantine",{"name":192},{"id":206,"name":207,"tactic":208},"D3-CM","Content Modification",{"name":192},{"id":210,"name":211,"tactic":212},"D3-KBPI","Kernel-based Process Isolation",{"name":192},{"id":214,"name":215,"tactic":216},"D3-SCF","System Call Filtering",{"name":192},{"id":218,"name":219,"tactic":220},"D3-HBPI","Hardware-based Process Isolation",{"name":192},{"id":222,"name":223,"tactic":224},"D3-ABPI","Application-based Process Isolation",{"name":192},{"id":226,"name":227,"tactic":228},"D3-WSAM","Web Session Access Mediation",{"name":192},[],[231],"GHSA-jv82-75fh-23r7",[],[234,236,238,240,242,244],{"_key":235},"RHSA-2025:2218",{"_key":237},"RHSA-2025:2219",{"_key":239},"RHSA-2025:2220",{"_key":241},"RHSA-2025:2221",{"_key":243},"RHSA-2025:2222",{"_key":245},"RHSA-2025:2223",[],[248,250,252],{"_key":249},"CGA-FJQW-FJMG-Q4F7",{"_key":251},"CGA-PQ8H-MV59-RCVG",{"_key":253},"CGA-Q5XM-83FM-G7C7","2024-11-13T20:53:00.291Z","2024-11-13T21:35:30.700Z","Analyzed",{"cisa_kev":258,"cisa_ransomware":258,"cisa_vendor":9,"epss_severity":259,"epss_score":260,"severity":261,"severity_score":262,"severity_version":263,"severity_source":264,"severity_vector":265,"severity_status":256},false,"low",0.00276,"medium",4.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",[267,275,280],{"url":268,"sources":269,"tags":272},"https://www.jenkins.io/security/advisory/2024-11-13/#SECURITY-3447",[264,270,271],"nvd","osv_maven",[273,274],"Vendor Advisory","WEB",{"url":276,"sources":277,"tags":278},"https://nvd.nist.gov/vuln/detail/CVE-2024-52549",[271],[279],"Advisory",{"url":281,"sources":282,"tags":283},"https://github.com/jenkinsci/script-security-plugin",[271],[284],"PACKAGE",[],{"date":287,"score":260,"percentile":288},"2026-06-04",0.51225,[290,294,297,300,303,306,309,312,315,318,321,324,327,330,333,337,340,343,346,349,352,355,358,361,364,367,370,373,376,379,382,385,388,391,394,397,400,403,406,409,412,415,418,421,424,427,430,433,436,440,442,445,448,451,454,457,460,463,466,469,472,475,478,481,484,487,490,493,495,498,501,504,507,510,513,516,519,522,525,528,531,534,537,540,543,545,548,551,554,557],{"date":291,"score":292,"percentile":293},"2025-11-04",0.00106,0.29294,{"date":295,"score":292,"percentile":296},"2025-11-05",0.29262,{"date":298,"score":292,"percentile":299},"2025-11-06",0.29283,{"date":301,"score":292,"percentile":302},"2025-11-07",0.2927,{"date":304,"score":292,"percentile":305},"2025-11-08",0.29274,{"date":307,"score":292,"percentile":308},"2025-11-09",0.29246,{"date":310,"score":292,"percentile":311},"2025-11-10",0.29227,{"date":313,"score":292,"percentile":314},"2025-11-11",0.29248,{"date":316,"score":292,"percentile":317},"2025-11-12",0.29291,{"date":319,"score":292,"percentile":320},"2025-11-13",0.29304,{"date":322,"score":292,"percentile":323},"2025-11-14",0.29303,{"date":325,"score":292,"percentile":326},"2025-11-15",0.29295,{"date":328,"score":292,"percentile":329},"2025-11-16",0.29263,{"date":331,"score":292,"percentile":332},"2025-11-17",0.29241,{"date":334,"score":335,"percentile":336},"2025-11-18",0.00153,0.30501,{"date":338,"score":335,"percentile":339},"2025-11-19",0.30518,{"date":341,"score":335,"percentile":342},"2025-11-20",0.30517,{"date":344,"score":292,"percentile":345},"2025-11-21",0.29282,{"date":347,"score":292,"percentile":348},"2025-11-22",0.29292,{"date":350,"score":292,"percentile":351},"2025-11-23",0.29256,{"date":353,"score":292,"percentile":354},"2025-11-24",0.29237,{"date":356,"score":292,"percentile":357},"2025-11-25",0.29226,{"date":359,"score":292,"percentile":360},"2025-11-26",0.29228,{"date":362,"score":292,"percentile":363},"2025-11-27",0.2924,{"date":365,"score":292,"percentile":366},"2025-11-28",0.29217,{"date":368,"score":292,"percentile":369},"2025-11-29",0.29208,{"date":371,"score":292,"percentile":372},"2025-11-30",0.29183,{"date":374,"score":292,"percentile":375},"2025-12-01",0.29247,{"date":377,"score":292,"percentile":378},"2025-12-02",0.29273,{"date":380,"score":292,"percentile":381},"2025-12-03",0.29281,{"date":383,"score":292,"percentile":384},"2025-12-04",0.29204,{"date":386,"score":292,"percentile":387},"2025-12-05",0.29235,{"date":389,"score":292,"percentile":390},"2025-12-06",0.29238,{"date":392,"score":292,"percentile":393},"2025-12-07",0.29211,{"date":395,"score":292,"percentile":396},"2025-12-08",0.29218,{"date":398,"score":292,"percentile":399},"2025-12-09",0.29275,{"date":401,"score":292,"percentile":402},"2025-12-10",0.29341,{"date":404,"score":292,"percentile":405},"2025-12-11",0.29369,{"date":407,"score":292,"percentile":408},"2025-12-12",0.29387,{"date":410,"score":292,"percentile":411},"2025-12-13",0.29388,{"date":413,"score":292,"percentile":414},"2025-12-14",0.29362,{"date":416,"score":292,"percentile":417},"2025-12-15",0.29332,{"date":419,"score":292,"percentile":420},"2025-12-16",0.29354,{"date":422,"score":292,"percentile":423},"2025-12-17",0.29406,{"date":425,"score":292,"percentile":426},"2025-12-18",0.29454,{"date":428,"score":292,"percentile":429},"2025-12-19",0.29465,{"date":431,"score":292,"percentile":432},"2025-12-20",0.29442,{"date":434,"score":292,"percentile":435},"2025-12-21",0.29395,{"date":437,"score":438,"percentile":439},"2025-12-22",0.00203,0.42595,{"date":441,"score":438,"percentile":439},"2025-12-23",{"date":443,"score":438,"percentile":444},"2025-12-24",0.42609,{"date":446,"score":438,"percentile":447},"2025-12-25",0.42654,{"date":449,"score":438,"percentile":450},"2025-12-26",0.42635,{"date":452,"score":438,"percentile":453},"2025-12-27",0.42653,{"date":455,"score":438,"percentile":456},"2025-12-28",0.42559,{"date":458,"score":438,"percentile":459},"2025-12-29",0.4254,{"date":461,"score":438,"percentile":462},"2025-12-30",0.42532,{"date":464,"score":438,"percentile":465},"2025-12-31",0.42577,{"date":467,"score":438,"percentile":468},"2026-01-01",0.42717,{"date":470,"score":438,"percentile":471},"2026-01-02",0.42691,{"date":473,"score":438,"percentile":474},"2026-01-03",0.42681,{"date":476,"score":438,"percentile":477},"2026-01-04",0.4252,{"date":479,"score":438,"percentile":480},"2026-01-05",0.42496,{"date":482,"score":438,"percentile":483},"2026-01-06",0.42497,{"date":485,"score":438,"percentile":486},"2026-01-07",0.42518,{"date":488,"score":438,"percentile":489},"2026-01-08",0.42545,{"date":491,"score":438,"percentile":492},"2026-01-09",0.42522,{"date":494,"score":438,"percentile":492},"2026-01-10",{"date":496,"score":438,"percentile":497},"2026-01-11",0.42494,{"date":499,"score":438,"percentile":500},"2026-01-12",0.42448,{"date":502,"score":438,"percentile":503},"2026-01-13",0.42427,{"date":505,"score":438,"percentile":506},"2026-01-14",0.42476,{"date":508,"score":438,"percentile":509},"2026-01-15",0.42467,{"date":511,"score":438,"percentile":512},"2026-01-16",0.42486,{"date":514,"score":438,"percentile":515},"2026-01-17",0.42461,{"date":517,"score":438,"percentile":518},"2026-01-18",0.42423,{"date":520,"score":438,"percentile":521},"2026-01-19",0.42393,{"date":523,"score":438,"percentile":524},"2026-01-20",0.42385,{"date":526,"score":438,"percentile":527},"2026-01-21",0.42391,{"date":529,"score":438,"percentile":530},"2026-01-22",0.42392,{"date":532,"score":438,"percentile":533},"2026-01-23",0.42447,{"date":535,"score":438,"percentile":536},"2026-01-24",0.42455,{"date":538,"score":438,"percentile":539},"2026-01-25",0.42403,{"date":541,"score":438,"percentile":542},"2026-01-26",0.42362,{"date":544,"score":438,"percentile":542},"2026-01-27",{"date":546,"score":438,"percentile":547},"2026-01-28",0.42359,{"date":549,"score":438,"percentile":550},"2026-01-29",0.42343,{"date":552,"score":438,"percentile":553},"2026-01-30",0.42349,{"date":555,"score":438,"percentile":556},"2026-01-31",0.42357,{"date":558,"score":438,"percentile":559},"2026-02-01",0.42472,[561,566,568],{"source":264,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":562,"cvss_v4_0":9},{"baseScore":262,"baseSeverity":563,"vectorString":265,"impactScore":564,"exploitabilityScore":565},"MEDIUM",2.3,7.2,{"source":270,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":567,"cvss_v4_0":9},{"baseScore":262,"baseSeverity":563,"vectorString":265,"impactScore":564,"exploitabilityScore":565},{"source":271,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":569,"cvss_v4_0":9},{"baseScore":262,"baseSeverity":9,"vectorString":265,"impactScore":564,"exploitabilityScore":565},[571,588,601],{"ecosystem":9,"name":572,"vendor":573,"product":574,"cpe_part":575,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":576},"Jenkins Script Security Plugin","jenkins project","jenkins script security plugin","a",[577,582,584],{"version":578,"is_range":579,"range_type":264,"version_start":9,"version_start_type":9,"version_end":580,"version_end_type":581,"fixed_in":9},"\u003C= 1362.v67dc1f0e1b_b_3",true,"1362.v67dc1f0e1b_b_3","including",{"version":583,"is_range":258,"range_type":264,"version_start":583,"version_start_type":581,"version_end":583,"version_end_type":581,"fixed_in":9},"1365.v4778ca_84b_de5",{"version":585,"is_range":579,"range_type":264,"version_start":586,"version_start_type":581,"version_end":587,"version_end_type":581,"fixed_in":9},">= 1366.vd44b_49a_5c85c, \u003C= 1367.vdf2fc45f229c","1366.vd44b_49a_5c85c","1367.vdf2fc45f229c",{"ecosystem":9,"name":589,"vendor":590,"product":591,"cpe_part":575,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":592},"script security","jenkins","script_security",[593,598,600],{"version":594,"is_range":579,"range_type":595,"version_start":9,"version_start_type":9,"version_end":596,"version_end_type":597,"fixed_in":9},"lt1362.1364.v4cf2dc5d8776","cpe","1362.1364.v4cf2dc5d8776","excluding",{"version":599,"is_range":579,"range_type":595,"version_start":586,"version_start_type":581,"version_end":587,"version_end_type":597,"fixed_in":9},"gte1366.vd44b_49a_5c85c_lt1367.vdf2fc45f229c",{"version":583,"is_range":258,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":602,"name":603,"vendor":604,"product":605,"cpe_part":9,"purl_type":606,"purl_namespace":604,"purl_name":605,"source":9,"versions":607},"Maven","org.jenkins-ci.plugins:script-security","org.jenkins-ci.plugins","script-security","maven",[608],{"version":609,"is_range":579,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":597,"fixed_in":9},"lt1368_vb","ecosystem","1368.vb"]