pkg:maven/org.jenkins-ci.plugins/dependency-track
Type
maven
Namespace
org.jenkins-ci.plugins
Name
dependency-track
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/dependency-track package.
High
1
Moderate
1
Medium
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 3.1.0 |
CVE-2021-21632
CVE-2021-21633 |
JENKINS:SECURITY-2250 | CSRF vulnerability and missing permission checks in `dependency-track` allow capturing credentials | medium |
2021-03-30T00:00:00
(3 years ago) |
|
Fixed | = 3.1.1 |
CVE-2021-21632
CVE-2021-21633 |
JENKINS:SECURITY-2250 | CSRF vulnerability and missing permission checks in `dependency-track` allow capturing credentials | medium |
2021-03-30T00:00:00
(3 years ago) |
|
Affected | <= 3.1.0 |
CVE-2021-21633
|
MAVEN:GHSA-V7XH-H48C-XW5F | CSRF vulnerability and in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | high |
2022-05-24T17:45:45
(2 years ago) |
|
Fixed | = 3.1.1 |
CVE-2021-21633
|
MAVEN:GHSA-V7XH-H48C-XW5F | CSRF vulnerability and in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | high |
2022-05-24T17:45:45
(2 years ago) |
|
Affected | <= 3.1.0 |
CVE-2021-21632
|
MAVEN:GHSA-XFRW-PCMC-R2P3 | Missing permission checks in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | moderate |
2022-05-24T17:45:46
(2 years ago) |
|
Fixed | = 3.1.1 |
CVE-2021-21632
|
MAVEN:GHSA-XFRW-PCMC-R2P3 | Missing permission checks in Jenkins OWASP Dependency-Track Plugin allow capturing credentials | moderate |
2022-05-24T17:45:46
(2 years ago) |