pkg:maven/org.jenkins-ci.plugins/keycloak
Type
maven
Namespace
org.jenkins-ci.plugins
Name
keycloak
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/keycloak package.
Critical
1
High
1
Moderate
1
Medium
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 2.3.0 |
CVE-2023-24457
|
 JENKINS:SECURITY-2986
|
CSRF vulnerability in `keycloak` | medium |
2023-01-24T00:00:00
(20 months ago) |
|
| Affected | <= 2.3.0 |
CVE-2023-24456
|
JENKINS:SECURITY-2987
|
Session fixation vulnerability in `keycloak` | high |
2023-01-24T00:00:00
(20 months ago) |
|
| Affected | <= 2.3.0 |
CVE-2023-24456
|
 MAVEN:GHSA-9963-GMH8-VVM6
|
Session fixation vulnerability in Jenkins Keycloak Authentication Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |
|
| Fixed | = 2.3.1 |
CVE-2023-24456
|
MAVEN:GHSA-9963-GMH8-VVM6
|
Session fixation vulnerability in Jenkins Keycloak Authentication Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |
|
| Affected | <= 2.3.0 |
CVE-2023-24457
|
MAVEN:GHSA-9WRR-4R9V-26XC
|
CSRF vulnerability in Jenkins Keycloak Authentication Plugin | moderate |
2023-01-26T21:30:17
(19 months ago) |
|
| Fixed | = 2.3.1 |
CVE-2023-24457
|
MAVEN:GHSA-9WRR-4R9V-26XC
|
CSRF vulnerability in Jenkins Keycloak Authentication Plugin | moderate |
2023-01-26T21:30:17
(19 months ago) |