Vulnerability Details CVE-2019-16558
Jenkins Spira Importer Plugin 3.2.3 and earlier disables SSL/TLS certificate validation for the Jenkins master JVM.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.9%
CVSS Severity
CVSS v3 Score 8.2
CVSS v2 Score 6.4
References
Products affected by CVE-2019-16558
-
cpe:2.3:a:jenkins:spira_importer:-
-
cpe:2.3:a:jenkins:spira_importer:3.2.2
-
cpe:2.3:a:jenkins:spira_importer:3.2.3