pkg:maven/org.jenkins-ci.plugins/gitlab-branch-source
Type
maven
Namespace
org.jenkins-ci.plugins
Name
gitlab-branch-source
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/gitlab-branch-source package.
Medium
2
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 684.vea_fa_7c1e2fe3 |
CVE-2024-23903
|
JENKINS:SECURITY-2871 | Non-constant time webhook token comparison in `gitlab-branch-source` | low |
2024-01-24T00:00:00
(7 months ago) |
|
Fixed | = 688.v5fa_356ee8520 |
CVE-2024-23903
|
JENKINS:SECURITY-2871 | Non-constant time webhook token comparison in `gitlab-branch-source` | low |
2024-01-24T00:00:00
(7 months ago) |
|
Affected | <= 684.vea_fa_7c1e2fe3 |
CVE-2024-23901
|
JENKINS:SECURITY-3040 | Shared projects are unconditionally discovered by `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |
|
Fixed | = 688.v5fa_356ee8520 |
CVE-2024-23901
|
JENKINS:SECURITY-3040 | Shared projects are unconditionally discovered by `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |
|
Affected | <= 684.vea_fa_7c1e2fe3 |
CVE-2024-23902
|
JENKINS:SECURITY-3251 | CSRF vulnerability in `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |
|
Fixed | = 688.v5fa_356ee8520 |
CVE-2024-23902
|
JENKINS:SECURITY-3251 | CSRF vulnerability in `gitlab-branch-source` | medium |
2024-01-24T00:00:00
(7 months ago) |