pkg:maven/org.jenkins-ci.plugins/dimensionsscm
Type
maven
Namespace
org.jenkins-ci.plugins
Name
dimensionsscm
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/dimensionsscm package.
Moderate
2
Medium
4
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 0.8.14 |
 JENKINS:SECURITY-1065
|
Dimensions Plugin stored credentials in plain text | medium |
2018-09-25T00:00:00
(6 years ago) |
||
| Fixed | = 0.8.15 |
JENKINS:SECURITY-1065
|
Dimensions Plugin stored credentials in plain text | medium |
2018-09-25T00:00:00
(6 years ago) |
||
| Affected | <= 0.8.14 |
JENKINS:SECURITY-1108
|
CSRF vulnerability and missing permission checks in Dimensions Plugin | medium |
2018-09-25T00:00:00
(6 years ago) |
||
| Fixed | = 0.8.15 |
JENKINS:SECURITY-1108
|
CSRF vulnerability and missing permission checks in Dimensions Plugin | medium |
2018-09-25T00:00:00
(6 years ago) |
||
| Affected | <= 0.9.3 |
CVE-2023-32261
|
JENKINS:SECURITY-3138
|
Missing permission check in `dimensionsscm` allows enumerating credentials IDs | medium |
2023-06-14T00:00:00
(15 months ago) |
|
| Fixed | = 0.9.3.1 |
CVE-2023-32261
|
JENKINS:SECURITY-3138
|
Missing permission check in `dimensionsscm` allows enumerating credentials IDs | medium |
2023-06-14T00:00:00
(15 months ago) |
|
| Affected | <= 0.9.3 |
CVE-2023-32262
|
JENKINS:SECURITY-3143
|
Exposure of system-scoped credentials in `dimensionsscm` | medium |
2023-06-14T00:00:00
(15 months ago) |
|
| Fixed | = 0.9.3.1 |
CVE-2023-32262
|
JENKINS:SECURITY-3143
|
Exposure of system-scoped credentials in `dimensionsscm` | medium |
2023-06-14T00:00:00
(15 months ago) |
|
| Affected | <= 0.9.3 |
CVE-2023-32261
|
 MAVEN:GHSA-27PR-R7HM-C2RC
|
Missing permission check in Jenkins Dimensions Plugin allows enumerating credentials IDs | moderate |
2023-07-19T18:30:55
(14 months ago) |
|
| Fixed | = 0.9.3.1 |
CVE-2023-32261
|
MAVEN:GHSA-27PR-R7HM-C2RC
|
Missing permission check in Jenkins Dimensions Plugin allows enumerating credentials IDs | moderate |
2023-07-19T18:30:55
(14 months ago) |
|
| Affected | >= 0.8.17, <= 0.9.3 |
CVE-2023-32263
|
MAVEN:GHSA-8HC6-W44M-WFXF
|
Potential leak of credentials in Micro Focus Dimensions CM Jenkins Plugin | low |
2023-07-19T18:30:56
(14 months ago) |
|
| Fixed | = 0.9.3.1 |
CVE-2023-32263
|
MAVEN:GHSA-8HC6-W44M-WFXF
|
Potential leak of credentials in Micro Focus Dimensions CM Jenkins Plugin | low |
2023-07-19T18:30:56
(14 months ago) |
|
| Affected | <= 0.9.3 |
CVE-2023-32262
|
MAVEN:GHSA-PX39-5H8C-J3C8
|
Exposure of system-scoped credentials in Jenkins Dimensions Plugin | moderate |
2023-07-19T18:30:56
(14 months ago) |
|
| Fixed | = 0.9.3.1 |
CVE-2023-32262
|
MAVEN:GHSA-PX39-5H8C-J3C8
|
Exposure of system-scoped credentials in Jenkins Dimensions Plugin | moderate |
2023-07-19T18:30:56
(14 months ago) |