pkg:maven/org.jenkins-ci.plugins/azure-vm-agents
Type
maven
Namespace
org.jenkins-ci.plugins
Name
azure-vm-agents
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/azure-vm-agents package.
Moderate
6
Medium
5
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 0.8.0 |
CVE-2019-1003035
|
JENKINS:SECURITY-1330 | Information disclosure in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
Fixed | = 0.8.1 |
CVE-2019-1003035
|
JENKINS:SECURITY-1330 | Information disclosure in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
Affected | <= 0.8.0 |
CVE-2019-1003036
|
JENKINS:SECURITY-1331 | Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | medium |
2019-03-06T00:00:00
(5 years ago) |
|
Fixed | = 0.8.1 |
CVE-2019-1003036
|
JENKINS:SECURITY-1331 | Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | medium |
2019-03-06T00:00:00
(5 years ago) |
|
Affected | <= 0.8.0 |
CVE-2019-1003037
|
JENKINS:SECURITY-1332 | Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
Fixed | = 0.8.1 |
CVE-2019-1003037
|
JENKINS:SECURITY-1332 | Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
Affected | <= 852.v8d35f0960a_43 |
CVE-2023-32988
|
JENKINS:SECURITY-2855-1 | Missing permission check in `azure-vm-agents` allows enumerating credentials IDs | medium |
2023-05-16T00:00:00
(16 months ago) |
|
Fixed | = 853.v4a_1a_dd947520 |
CVE-2023-32988
|
JENKINS:SECURITY-2855-1 | Missing permission check in `azure-vm-agents` allows enumerating credentials IDs | medium |
2023-05-16T00:00:00
(16 months ago) |
|
Affected | <= 852.v8d35f0960a_43 |
CVE-2023-32989
CVE-2023-32990 |
JENKINS:SECURITY-2855-2 | CSRF vulnerability and missing permission checks in `azure-vm-agents` | medium |
2023-05-16T00:00:00
(16 months ago) |
|
Fixed | = 853.v4a_1a_dd947520 |
CVE-2023-32989
CVE-2023-32990 |
JENKINS:SECURITY-2855-2 | CSRF vulnerability and missing permission checks in `azure-vm-agents` | medium |
2023-05-16T00:00:00
(16 months ago) |
|
Affected | < 853.v4a |
CVE-2023-32989
|
MAVEN:GHSA-26J3-4M55-J6R7 | Jenkins Azure VM Agents Plugin Cross-site Request Forgery vulnerability | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
Fixed | = 853.v4a |
CVE-2023-32989
|
MAVEN:GHSA-26J3-4M55-J6R7 | Jenkins Azure VM Agents Plugin Cross-site Request Forgery vulnerability | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
Affected | <= 0.8.0 |
CVE-2019-1003035
|
MAVEN:GHSA-3HG6-C7F8-3348 | Information disclosure in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
Fixed | = 0.8.1 |
CVE-2019-1003035
|
MAVEN:GHSA-3HG6-C7F8-3348 | Information disclosure in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
Affected | <= 0.8.0 |
CVE-2019-1003036
|
MAVEN:GHSA-M33C-CJJJ-2MG4 | Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | moderate |
2022-05-13T01:15:08
(2 years ago) |
|
Fixed | = 0.8.1 |
CVE-2019-1003036
|
MAVEN:GHSA-M33C-CJJJ-2MG4 | Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | moderate |
2022-05-13T01:15:08
(2 years ago) |
|
Affected | < 853.v4a |
CVE-2023-32988
|
MAVEN:GHSA-Q77X-CXRQ-988J | Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
Fixed | = 853.v4a |
CVE-2023-32988
|
MAVEN:GHSA-Q77X-CXRQ-988J | Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
Affected | <= 0.8.0 |
CVE-2019-1003037
|
MAVEN:GHSA-R2VW-X3HR-969V | Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
Fixed | = 0.8.1 |
CVE-2019-1003037
|
MAVEN:GHSA-R2VW-X3HR-969V | Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
Affected | < 853.v4a |
CVE-2023-32990
|
MAVEN:GHSA-RV6G-3V76-CVF9 | Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
Fixed | = 853.v4a |
CVE-2023-32990
|
MAVEN:GHSA-RV6G-3V76-CVF9 | Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |