pkg:maven/org.jenkins-ci.plugins/dimensionsscm
Type
maven
Namespace
org.jenkins-ci.plugins
Name
dimensionsscm
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/dimensionsscm package.
Moderate
2
Medium
4
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 0.8.14 | JENKINS:SECURITY-1065 | Dimensions Plugin stored credentials in plain text | medium |
2018-09-25T00:00:00
(6 years ago) |
||
Fixed | = 0.8.15 | JENKINS:SECURITY-1065 | Dimensions Plugin stored credentials in plain text | medium |
2018-09-25T00:00:00
(6 years ago) |
||
Affected | <= 0.8.14 | JENKINS:SECURITY-1108 | CSRF vulnerability and missing permission checks in Dimensions Plugin | medium |
2018-09-25T00:00:00
(6 years ago) |
||
Fixed | = 0.8.15 | JENKINS:SECURITY-1108 | CSRF vulnerability and missing permission checks in Dimensions Plugin | medium |
2018-09-25T00:00:00
(6 years ago) |
||
Affected | <= 0.9.3 |
CVE-2023-32261
|
JENKINS:SECURITY-3138 | Missing permission check in `dimensionsscm` allows enumerating credentials IDs | medium |
2023-06-14T00:00:00
(15 months ago) |
|
Fixed | = 0.9.3.1 |
CVE-2023-32261
|
JENKINS:SECURITY-3138 | Missing permission check in `dimensionsscm` allows enumerating credentials IDs | medium |
2023-06-14T00:00:00
(15 months ago) |
|
Affected | <= 0.9.3 |
CVE-2023-32262
|
JENKINS:SECURITY-3143 | Exposure of system-scoped credentials in `dimensionsscm` | medium |
2023-06-14T00:00:00
(15 months ago) |
|
Fixed | = 0.9.3.1 |
CVE-2023-32262
|
JENKINS:SECURITY-3143 | Exposure of system-scoped credentials in `dimensionsscm` | medium |
2023-06-14T00:00:00
(15 months ago) |
|
Affected | <= 0.9.3 |
CVE-2023-32261
|
MAVEN:GHSA-27PR-R7HM-C2RC | Missing permission check in Jenkins Dimensions Plugin allows enumerating credentials IDs | moderate |
2023-07-19T18:30:55
(14 months ago) |
|
Fixed | = 0.9.3.1 |
CVE-2023-32261
|
MAVEN:GHSA-27PR-R7HM-C2RC | Missing permission check in Jenkins Dimensions Plugin allows enumerating credentials IDs | moderate |
2023-07-19T18:30:55
(14 months ago) |
|
Affected | >= 0.8.17, <= 0.9.3 |
CVE-2023-32263
|
MAVEN:GHSA-8HC6-W44M-WFXF | Potential leak of credentials in Micro Focus Dimensions CM Jenkins Plugin | low |
2023-07-19T18:30:56
(14 months ago) |
|
Fixed | = 0.9.3.1 |
CVE-2023-32263
|
MAVEN:GHSA-8HC6-W44M-WFXF | Potential leak of credentials in Micro Focus Dimensions CM Jenkins Plugin | low |
2023-07-19T18:30:56
(14 months ago) |
|
Affected | <= 0.9.3 |
CVE-2023-32262
|
MAVEN:GHSA-PX39-5H8C-J3C8 | Exposure of system-scoped credentials in Jenkins Dimensions Plugin | moderate |
2023-07-19T18:30:56
(14 months ago) |
|
Fixed | = 0.9.3.1 |
CVE-2023-32262
|
MAVEN:GHSA-PX39-5H8C-J3C8 | Exposure of system-scoped credentials in Jenkins Dimensions Plugin | moderate |
2023-07-19T18:30:56
(14 months ago) |