pkg:maven/org.jenkins-ci.plugins/cvs
Type
maven
Namespace
org.jenkins-ci.plugins
Name
cvs
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/cvs package.
High
3
Moderate
2
Medium
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.15 |
CVE-2020-2184
|
JENKINS:SECURITY-1094 | CSRF vulnerability in `cvs` | medium |
2020-05-06T00:00:00
(4 years ago) |
|
Fixed | = 2.16 |
CVE-2020-2184
|
JENKINS:SECURITY-1094 | CSRF vulnerability in `cvs` | medium |
2020-05-06T00:00:00
(4 years ago) |
|
Affected | <= 2.16 |
CVE-2020-2324
|
JENKINS:SECURITY-2146 | XXE vulnerability in `cvs` | high |
2020-12-03T00:00:00
(3 years ago) |
|
Fixed | = 2.17 |
CVE-2020-2324
|
JENKINS:SECURITY-2146 | XXE vulnerability in `cvs` | high |
2020-12-03T00:00:00
(3 years ago) |
|
Affected | <= 2.19 |
CVE-2022-29036
CVE-2022-29037 CVE-2022-29038 CVE-2022-29039 CVE-2022-29040 CVE-2022-29041 CVE-2022-29042 CVE-2022-29043 CVE-2022-29044 CVE-2022-29045 CVE-2022-29046 |
JENKINS:SECURITY-2617 | Stored XSS vulnerabilities in multiple plugins providing additional parameter types | high |
2022-04-12T00:00:00
(2 years ago) |
|
Fixed | = 2.19.1 |
CVE-2022-29036
CVE-2022-29037 CVE-2022-29038 CVE-2022-29039 CVE-2022-29040 CVE-2022-29041 CVE-2022-29042 CVE-2022-29043 CVE-2022-29044 CVE-2022-29045 CVE-2022-29046 |
JENKINS:SECURITY-2617 | Stored XSS vulnerabilities in multiple plugins providing additional parameter types | high |
2022-04-12T00:00:00
(2 years ago) |
|
Affected | <= 2.15 |
CVE-2020-2184
|
MAVEN:GHSA-63MW-HP3H-GC77 | CSRF vulnerability in Jenkins CVS Plugin | moderate |
2022-05-24T17:17:14
(2 years ago) |
|
Fixed | = 2.16 |
CVE-2020-2184
|
MAVEN:GHSA-63MW-HP3H-GC77 | CSRF vulnerability in Jenkins CVS Plugin | moderate |
2022-05-24T17:17:14
(2 years ago) |
|
Affected | <= 2.16 |
CVE-2020-2324
|
MAVEN:GHSA-G9HG-X9C9-7XGR | XXE vulnerability in Jenkins CVS Plugin | high |
2022-05-24T17:35:09
(2 years ago) |
|
Fixed | = 2.17 |
CVE-2020-2324
|
MAVEN:GHSA-G9HG-X9C9-7XGR | XXE vulnerability in Jenkins CVS Plugin | high |
2022-05-24T17:35:09
(2 years ago) |
|
Affected | < 2.19.1 |
CVE-2022-29037
|
MAVEN:GHSA-GHQ2-M3PQ-QF3P | Stored XSS in Jenkins CVS Plugin | moderate |
2022-04-13T00:00:18
(2 years ago) |
|
Fixed | = 2.19.1 |
CVE-2022-29037
|
MAVEN:GHSA-GHQ2-M3PQ-QF3P | Stored XSS in Jenkins CVS Plugin | moderate |
2022-04-13T00:00:18
(2 years ago) |