pkg:maven/org.jenkins-ci.plugins/android-signing

Type maven

Namespace org.jenkins-ci.plugins

Name android-signing

Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/android-signing package.

Repository: https://mvnrepository.com/artifact/org.jenkins-ci.plugins/android-signing

Moderate 1

Medium 1

Type	Version	Distribution	# CVEs	# Advisory ID	Title	Severity	Published
Affected	<= 2.2.5		CVE-2022-36915	JENKINS:SECURITY-2404	Missing permission check in `android-signing` allows listing workspace contents	medium	2022-07-27T00:00:00 (2 years ago)
Affected	<= 2.2.5		CVE-2022-36915	MAVEN:GHSA-VP68-FM96-7V79	Jenkins Android Signing Plugin allows attackers to check whether attacker-specified file patterns match workspace contents	moderate	2022-07-28T00:00:42 (2 years ago)