pkg:maven/org.jenkins-ci.plugins/gitlab-branch-source
Type
maven
Namespace
org.jenkins-ci.plugins
Name
gitlab-branch-source
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/gitlab-branch-source package.
Medium
2
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 684.vea_fa_7c1e2fe3 |
CVE-2024-23903
|
 JENKINS:SECURITY-2871
|
Non-constant time webhook token comparison in `gitlab-branch-source` | low |
2024-01-24T00:00:00
(7 months ago) |
|
| Fixed | = 688.v5fa_356ee8520 |
CVE-2024-23903
|
JENKINS:SECURITY-2871
|
Non-constant time webhook token comparison in `gitlab-branch-source` | low |
2024-01-24T00:00:00
(7 months ago) |
|
| Affected | <= 684.vea_fa_7c1e2fe3 |
CVE-2024-23901
|
JENKINS:SECURITY-3040
|
Shared projects are unconditionally discovered by `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |
|
| Fixed | = 688.v5fa_356ee8520 |
CVE-2024-23901
|
JENKINS:SECURITY-3040
|
Shared projects are unconditionally discovered by `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |
|
| Affected | <= 684.vea_fa_7c1e2fe3 |
CVE-2024-23902
|
JENKINS:SECURITY-3251
|
CSRF vulnerability in `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |
|
| Fixed | = 688.v5fa_356ee8520 |
CVE-2024-23902
|
JENKINS:SECURITY-3251
|
CSRF vulnerability in `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |