CVE-2026-14336 Blast Radius
HIGH • CVSS 8.2PIA's OIDC issuer allowlist for Jenkins tokens uses a bare string-prefix check (issuer.startswith(' https://ci.eclipse.org ') in is_issuer_known, pia/…
Is Your Infrastructure Using These Packages?
EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-14336.