pkg:maven/org.jenkins-ci.plugins/android-signing
Type
maven
Namespace
org.jenkins-ci.plugins
Name
android-signing
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/android-signing package.
Moderate
1
Medium
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.2.5 |
CVE-2022-36915
|
JENKINS:SECURITY-2404 | Missing permission check in `android-signing` allows listing workspace contents | medium |
2022-07-27T00:00:00
(2 years ago) |
|
Affected | <= 2.2.5 |
CVE-2022-36915
|
MAVEN:GHSA-VP68-FM96-7V79 | Jenkins Android Signing Plugin allows attackers to check whether attacker-specified file patterns match workspace contents | moderate |
2022-07-28T00:00:42
(2 years ago) |