pkg:maven/com.alauda.jenkins.plugins/alauda-devops-pipeline
Type
maven
Namespace
com.alauda.jenkins.plugins
Name
alauda-devops-pipeline
Known advisories, vulnerabilities and fixes for com.alauda.jenkins.plugins/alauda-devops-pipeline package.
High
1
Moderate
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.3.2 |
CVE-2019-16574
|
MAVEN:GHSA-8RFC-V3VJ-J62W | Jenkins Alauda DevOps Pipeline Plugin allows attackers with Overall/Read permission to capture credentials stored in Jenkins | moderate |
2022-05-24T17:03:49
(2 years ago) |
|
Affected | <= 2.3.2 |
CVE-2019-16573
|
MAVEN:GHSA-PV4C-RJ4H-GR9M | Jenkins Alauda DevOps Pipeline Plugin vulnerable to cross-site request forgery | high |
2022-05-24T17:03:48
(2 years ago) |