pkg:maven/com.blackducksoftware.integration/blackduck-hub

Type maven

Namespace com.blackducksoftware.integration

Name blackduck-hub

Known advisories, vulnerabilities and fixes for com.blackducksoftware.integration/blackduck-hub package.

Repository: https://mvnrepository.com/artifact/com.blackducksoftware.integration/blackduck-hub

High 1

Moderate 2

Type	Version	Distribution	# CVEs	# Advisory ID	Title	Severity	Published
Affected	<= 4.0.0		CVE-2018-1000190	MAVEN:GHSA-26HW-262C-G9GC	Exposure of sensitive information vulnerability in Jenkins Black Duck Hub Plugin	moderate	2022-05-14T03:13:12 (2 years ago)
Fixed	= 4.0.1		CVE-2018-1000190	MAVEN:GHSA-26HW-262C-G9GC	Exposure of sensitive information vulnerability in Jenkins Black Duck Hub Plugin	moderate	2022-05-14T03:13:12 (2 years ago)
Affected	<= 3.1.0		CVE-2018-1000198	MAVEN:GHSA-8RC4-3JC3-83PM	XML External Entity processing vulnerability in Jenkins Black Duck Hub Plugin	moderate	2022-05-14T03:13:12 (2 years ago)
Fixed	= 4.0.0		CVE-2018-1000198	MAVEN:GHSA-8RC4-3JC3-83PM	XML External Entity processing vulnerability in Jenkins Black Duck Hub Plugin	moderate	2022-05-14T03:13:12 (2 years ago)
Affected	<= 3.0.3		CVE-2018-1000197	MAVEN:GHSA-CRVQ-MW2W-4CFX	Jenkins Black Duck Hub Plugin allowed any user with Overall/Read to read and write its configuration	high	2022-05-13T01:48:34 (2 years ago)
Fixed	= 3.1.0		CVE-2018-1000197	MAVEN:GHSA-CRVQ-MW2W-4CFX	Jenkins Black Duck Hub Plugin allowed any user with Overall/Read to read and write its configuration	high	2022-05-13T01:48:34 (2 years ago)