pkg:maven/com.blackducksoftware.integration/blackduck-hub
Type
maven
Namespace
com.blackducksoftware.integration
Name
blackduck-hub
Known advisories, vulnerabilities and fixes for com.blackducksoftware.integration/blackduck-hub package.
High
1
Moderate
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 4.0.0 |
CVE-2018-1000190
|
MAVEN:GHSA-26HW-262C-G9GC | Exposure of sensitive information vulnerability in Jenkins Black Duck Hub Plugin | moderate |
2022-05-14T03:13:12
(2 years ago) |
|
Fixed | = 4.0.1 |
CVE-2018-1000190
|
MAVEN:GHSA-26HW-262C-G9GC | Exposure of sensitive information vulnerability in Jenkins Black Duck Hub Plugin | moderate |
2022-05-14T03:13:12
(2 years ago) |
|
Affected | <= 3.1.0 |
CVE-2018-1000198
|
MAVEN:GHSA-8RC4-3JC3-83PM | XML External Entity processing vulnerability in Jenkins Black Duck Hub Plugin | moderate |
2022-05-14T03:13:12
(2 years ago) |
|
Fixed | = 4.0.0 |
CVE-2018-1000198
|
MAVEN:GHSA-8RC4-3JC3-83PM | XML External Entity processing vulnerability in Jenkins Black Duck Hub Plugin | moderate |
2022-05-14T03:13:12
(2 years ago) |
|
Affected | <= 3.0.3 |
CVE-2018-1000197
|
MAVEN:GHSA-CRVQ-MW2W-4CFX | Jenkins Black Duck Hub Plugin allowed any user with Overall/Read to read and write its configuration | high |
2022-05-13T01:48:34
(2 years ago) |
|
Fixed | = 3.1.0 |
CVE-2018-1000197
|
MAVEN:GHSA-CRVQ-MW2W-4CFX | Jenkins Black Duck Hub Plugin allowed any user with Overall/Read to read and write its configuration | high |
2022-05-13T01:48:34
(2 years ago) |