pkg:maven/org.jenkins-ci.plugins/ease-plugin
Type
maven
Namespace
org.jenkins-ci.plugins
Name
ease-plugin
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/ease-plugin package.
Moderate
2
Medium
3
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.2.12 | JENKINS:SECURITY-1070 | Arxan MAM Publisher Plugin stored password in plain text | medium |
2019-02-19T00:00:00
(5 years ago) |
||
Fixed | = 2.0 | JENKINS:SECURITY-1070 | Arxan MAM Publisher Plugin stored password in plain text | medium |
2019-02-19T00:00:00
(5 years ago) |
||
Affected | <= 2.1 | JENKINS:SECURITY-1328 | Unprivileged users with Overall/Read access were able to enumerate credential IDs in Arxan MAM Publisher Plugin | medium |
2019-03-25T00:00:00
(5 years ago) |
||
Fixed | = 2.2 | JENKINS:SECURITY-1328 | Unprivileged users with Overall/Read access were able to enumerate credential IDs in Arxan MAM Publisher Plugin | medium |
2019-03-25T00:00:00
(5 years ago) |
||
Affected | <= 2.6 |
CVE-2023-35148
CVE-2023-35149 |
JENKINS:SECURITY-2911 | CSRF vulnerability and missing permission checks in `ease-plugin` | medium |
2023-06-14T00:00:00
(15 months ago) |
|
Affected | <= 2.6 |
CVE-2023-35149
|
MAVEN:GHSA-5GHV-WXH9-7356 | Jenkins Digital.ai App Management Publisher Plugin missing permission checks | moderate |
2023-06-14T15:30:37
(15 months ago) |
|
Affected | <= 2.6 |
CVE-2023-35148
|
MAVEN:GHSA-R72X-2H45-P59X | Jenkins Digital.ai App Management Publisher Plugin vulnerable to Cross-Site Request Forgery | moderate |
2023-06-14T15:30:37
(15 months ago) |