pkg:maven/org.jenkins-ci.plugins/azure-vm-agents
Type
maven
Namespace
org.jenkins-ci.plugins
Name
azure-vm-agents
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/azure-vm-agents package.
Moderate
6
Medium
5
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 0.8.0 |
CVE-2019-1003035
|
 JENKINS:SECURITY-1330
|
Information disclosure in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
| Fixed | = 0.8.1 |
CVE-2019-1003035
|
JENKINS:SECURITY-1330
|
Information disclosure in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
| Affected | <= 0.8.0 |
CVE-2019-1003036
|
JENKINS:SECURITY-1331
|
Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | medium |
2019-03-06T00:00:00
(5 years ago) |
|
| Fixed | = 0.8.1 |
CVE-2019-1003036
|
JENKINS:SECURITY-1331
|
Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | medium |
2019-03-06T00:00:00
(5 years ago) |
|
| Affected | <= 0.8.0 |
CVE-2019-1003037
|
JENKINS:SECURITY-1332
|
Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
| Fixed | = 0.8.1 |
CVE-2019-1003037
|
JENKINS:SECURITY-1332
|
Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | medium |
2019-03-06T00:00:00
(5 years ago) |
|
| Affected | <= 852.v8d35f0960a_43 |
CVE-2023-32988
|
JENKINS:SECURITY-2855-1
|
Missing permission check in `azure-vm-agents` allows enumerating credentials IDs | medium |
2023-05-16T00:00:00
(16 months ago) |
|
| Fixed | = 853.v4a_1a_dd947520 |
CVE-2023-32988
|
JENKINS:SECURITY-2855-1
|
Missing permission check in `azure-vm-agents` allows enumerating credentials IDs | medium |
2023-05-16T00:00:00
(16 months ago) |
|
| Affected | <= 852.v8d35f0960a_43 |
CVE-2023-32989
CVE-2023-32990 |
JENKINS:SECURITY-2855-2
|
CSRF vulnerability and missing permission checks in `azure-vm-agents` | medium |
2023-05-16T00:00:00
(16 months ago) |
|
| Fixed | = 853.v4a_1a_dd947520 |
CVE-2023-32989
CVE-2023-32990 |
JENKINS:SECURITY-2855-2
|
CSRF vulnerability and missing permission checks in `azure-vm-agents` | medium |
2023-05-16T00:00:00
(16 months ago) |
|
| Affected | < 853.v4a |
CVE-2023-32989
|
 MAVEN:GHSA-26J3-4M55-J6R7
|
Jenkins Azure VM Agents Plugin Cross-site Request Forgery vulnerability | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
| Fixed | = 853.v4a |
CVE-2023-32989
|
MAVEN:GHSA-26J3-4M55-J6R7
|
Jenkins Azure VM Agents Plugin Cross-site Request Forgery vulnerability | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
| Affected | <= 0.8.0 |
CVE-2019-1003035
|
MAVEN:GHSA-3HG6-C7F8-3348
|
Information disclosure in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
| Fixed | = 0.8.1 |
CVE-2019-1003035
|
MAVEN:GHSA-3HG6-C7F8-3348
|
Information disclosure in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
| Affected | <= 0.8.0 |
CVE-2019-1003036
|
MAVEN:GHSA-M33C-CJJJ-2MG4
|
Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | moderate |
2022-05-13T01:15:08
(2 years ago) |
|
| Fixed | = 0.8.1 |
CVE-2019-1003036
|
MAVEN:GHSA-M33C-CJJJ-2MG4
|
Missing permission check in Azure VM Agents Plugin allowed modifying VM configuration | moderate |
2022-05-13T01:15:08
(2 years ago) |
|
| Affected | < 853.v4a |
CVE-2023-32988
|
MAVEN:GHSA-Q77X-CXRQ-988J
|
Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
| Fixed | = 853.v4a |
CVE-2023-32988
|
MAVEN:GHSA-Q77X-CXRQ-988J
|
Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
| Affected | <= 0.8.0 |
CVE-2019-1003037
|
MAVEN:GHSA-R2VW-X3HR-969V
|
Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
| Fixed | = 0.8.1 |
CVE-2019-1003037
|
MAVEN:GHSA-R2VW-X3HR-969V
|
Unprivileged users with Overall/Read access are able to enumerate credential IDs in Azure VM Agents Plugin | moderate |
2022-05-13T01:15:07
(2 years ago) |
|
| Affected | < 853.v4a |
CVE-2023-32990
|
MAVEN:GHSA-RV6G-3V76-CVF9
|
Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
| Fixed | = 853.v4a |
CVE-2023-32990
|
MAVEN:GHSA-RV6G-3V76-CVF9
|
Jenkins Azure VM Agents Plugin missing permission checks | moderate |
2023-05-16T18:30:16
(16 months ago) |