pkg:maven/org.jenkins-ci.plugins/dependency-track
Type
maven
Namespace
org.jenkins-ci.plugins
Name
dependency-track
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/dependency-track package.
High
1
Moderate
1
Medium
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 3.1.0 |
CVE-2021-21632
CVE-2021-21633 |
 JENKINS:SECURITY-2250
|
CSRF vulnerability and missing permission checks in `dependency-track` allow capturing credentials | medium |
2021-03-30T00:00:00
(3 years ago) |
|
| Fixed | = 3.1.1 |
CVE-2021-21632
CVE-2021-21633 |
JENKINS:SECURITY-2250
|
CSRF vulnerability and missing permission checks in `dependency-track` allow capturing credentials | medium |
2021-03-30T00:00:00
(3 years ago) |
|
| Affected | <= 3.1.0 |
CVE-2021-21633
|
 MAVEN:GHSA-V7XH-H48C-XW5F
|
CSRF vulnerability and in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | high |
2022-05-24T17:45:45
(2 years ago) |
|
| Fixed | = 3.1.1 |
CVE-2021-21633
|
MAVEN:GHSA-V7XH-H48C-XW5F
|
CSRF vulnerability and in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | high |
2022-05-24T17:45:45
(2 years ago) |
|
| Affected | <= 3.1.0 |
CVE-2021-21632
|
MAVEN:GHSA-XFRW-PCMC-R2P3
|
Missing permission checks in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | moderate |
2022-05-24T17:45:46
(2 years ago) |
|
| Fixed | = 3.1.1 |
CVE-2021-21632
|
MAVEN:GHSA-XFRW-PCMC-R2P3
|
Missing permission checks in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | moderate |
2022-05-24T17:45:46
(2 years ago) |