pkg:maven/org.jenkins-ci.plugins/cas-plugin
Type
maven
Namespace
org.jenkins-ci.plugins
Name
cas-plugin
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/cas-plugin package.
High
2
Moderate
2
Medium
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.6.0 |
CVE-2021-21673
|
JENKINS:SECURITY-2387 | Open redirect vulnerability in `cas-plugin` | medium |
2021-06-30T00:00:00
(3 years ago) |
|
Fixed | = 1.6.1 |
CVE-2021-21673
|
JENKINS:SECURITY-2387 | Open redirect vulnerability in `cas-plugin` | medium |
2021-06-30T00:00:00
(3 years ago) |
|
Affected | <= 1.6.2 |
CVE-2023-32997
|
JENKINS:SECURITY-3000 | Session fixation vulnerability in `cas-plugin` | high |
2023-05-16T00:00:00
(16 months ago) |
|
Fixed | = 1.6.3 |
CVE-2023-32997
|
JENKINS:SECURITY-3000 | Session fixation vulnerability in `cas-plugin` | high |
2023-05-16T00:00:00
(16 months ago) |
|
Affected | <= 1.4.1 |
CVE-2018-1000188
|
JENKINS:SECURITY-809 | Server-side request forgery vulnerability in CAS Plugin | medium |
2018-06-04T00:00:00
(6 years ago) |
|
Fixed | = 1.4.2 |
CVE-2018-1000188
|
JENKINS:SECURITY-809 | Server-side request forgery vulnerability in CAS Plugin | medium |
2018-06-04T00:00:00
(6 years ago) |
|
Affected | <= 1.6.0 |
CVE-2021-21673
|
MAVEN:GHSA-2VVR-5757-QP87 | Open redirect vulnerability in Jenkins CAS Plugin | moderate |
2022-05-24T19:06:35
(2 years ago) |
|
Fixed | = 1.6.1 |
CVE-2021-21673
|
MAVEN:GHSA-2VVR-5757-QP87 | Open redirect vulnerability in Jenkins CAS Plugin | moderate |
2022-05-24T19:06:35
(2 years ago) |
|
Affected | <= 1.4.1 |
CVE-2018-1000188
|
MAVEN:GHSA-F8R7-7HV9-7F43 | Jenkins CAS Plugin Server-Side Request Forgery vulnerability | moderate |
2022-05-14T03:13:13
(2 years ago) |
|
Fixed | = 1.4.2 |
CVE-2018-1000188
|
MAVEN:GHSA-F8R7-7HV9-7F43 | Jenkins CAS Plugin Server-Side Request Forgery vulnerability | moderate |
2022-05-14T03:13:13
(2 years ago) |
|
Affected | < 1.6.3 |
CVE-2023-32997
|
MAVEN:GHSA-HJH8-9GXH-CX4X | Jenkins CAS Plugin Session Fixation vulnerability | high |
2023-05-16T18:30:16
(16 months ago) |
|
Fixed | = 1.6.3 |
CVE-2023-32997
|
MAVEN:GHSA-HJH8-9GXH-CX4X | Jenkins CAS Plugin Session Fixation vulnerability | high |
2023-05-16T18:30:16
(16 months ago) |