pkg:maven/org.jenkins-ci.plugins/katalon
Type
maven
Namespace
org.jenkins-ci.plugins
Name
katalon
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/katalon package.
High
2
Moderate
3
Medium
3
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.0.32 |
CVE-2022-43416
|
JENKINS:SECURITY-2844 | Agent-to-controller security bypass vulnerability in `katalon` | high |
2022-10-19T00:00:00
(23 months ago) |
|
Fixed | = 1.0.33 |
CVE-2022-43416
|
JENKINS:SECURITY-2844 | Agent-to-controller security bypass vulnerability in `katalon` | high |
2022-10-19T00:00:00
(23 months ago) |
|
Affected | <= 1.0.32 |
CVE-2022-43417
|
JENKINS:SECURITY-2845-1 | Missing permission checks in `katalon` allow capturing credentials | medium |
2022-10-19T00:00:00
(23 months ago) |
|
Fixed | = 1.0.33 |
CVE-2022-43417
|
JENKINS:SECURITY-2845-1 | Missing permission checks in `katalon` allow capturing credentials | medium |
2022-10-19T00:00:00
(23 months ago) |
|
Affected | <= 1.0.33 |
CVE-2022-43418
|
JENKINS:SECURITY-2845-2 | CSRF vulnerability in `katalon` allows capturing credentials | medium |
2022-10-19T00:00:00
(23 months ago) |
|
Fixed | = 1.0.34 |
CVE-2022-43418
|
JENKINS:SECURITY-2845-2 | CSRF vulnerability in `katalon` allows capturing credentials | medium |
2022-10-19T00:00:00
(23 months ago) |
|
Affected | <= 1.0.32 |
CVE-2022-43419
|
JENKINS:SECURITY-2846 | API keys stored in plain text by `katalon` | medium |
2022-10-19T00:00:00
(23 months ago) |
|
Fixed | = 1.0.33 |
CVE-2022-43419
|
JENKINS:SECURITY-2846 | API keys stored in plain text by `katalon` | medium |
2022-10-19T00:00:00
(23 months ago) |
|
Affected | < 1.0.33 |
CVE-2022-43419
|
MAVEN:GHSA-35RX-7PC8-6963 | API keys stored in plain text by Jenkins Katalon Plugin | moderate |
2022-10-19T19:00:18
(23 months ago) |
|
Fixed | = 1.0.33 |
CVE-2022-43419
|
MAVEN:GHSA-35RX-7PC8-6963 | API keys stored in plain text by Jenkins Katalon Plugin | moderate |
2022-10-19T19:00:18
(23 months ago) |
|
Affected | < 1.0.33 |
CVE-2022-43417
|
MAVEN:GHSA-5FVG-H778-JJJX | Missing permission checks in Jenkins Katalon Plugin allow capturing credentials | moderate |
2022-10-19T19:00:18
(23 months ago) |
|
Fixed | = 1.0.33 |
CVE-2022-43417
|
MAVEN:GHSA-5FVG-H778-JJJX | Missing permission checks in Jenkins Katalon Plugin allow capturing credentials | moderate |
2022-10-19T19:00:18
(23 months ago) |
|
Affected | < 1.0.33 |
CVE-2022-43416
|
MAVEN:GHSA-Q6F6-6C4P-XPH4 | Jenkins Katalon Plugin vulnerable to Protection Mechanism Failure | high |
2022-10-19T19:00:18
(23 months ago) |
|
Fixed | = 1.0.33 |
CVE-2022-43416
|
MAVEN:GHSA-Q6F6-6C4P-XPH4 | Jenkins Katalon Plugin vulnerable to Protection Mechanism Failure | high |
2022-10-19T19:00:18
(23 months ago) |
|
Affected | < 1.0.34 |
CVE-2022-43418
|
MAVEN:GHSA-X8J7-VXH9-P67G | CSRF vulnerability in Jenkins Katalon Plugin allows capturing credentials | moderate |
2022-10-19T19:00:18
(23 months ago) |
|
Fixed | = 1.0.34 |
CVE-2022-43418
|
MAVEN:GHSA-X8J7-VXH9-P67G | CSRF vulnerability in Jenkins Katalon Plugin allows capturing credentials | moderate |
2022-10-19T19:00:18
(23 months ago) |