pkg:maven/org.jenkins-ci.plugins/keycloak
Type
maven
Namespace
org.jenkins-ci.plugins
Name
keycloak
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/keycloak package.
Critical
1
High
1
Moderate
1
Medium
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.3.0 |
CVE-2023-24457
|
JENKINS:SECURITY-2986 | CSRF vulnerability in `keycloak` | medium |
2023-01-24T00:00:00
(20 months ago) |
|
Affected | <= 2.3.0 |
CVE-2023-24456
|
JENKINS:SECURITY-2987 | Session fixation vulnerability in `keycloak` | high |
2023-01-24T00:00:00
(20 months ago) |
|
Affected | <= 2.3.0 |
CVE-2023-24456
|
MAVEN:GHSA-9963-GMH8-VVM6 | Session fixation vulnerability in Jenkins Keycloak Authentication Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |
|
Fixed | = 2.3.1 |
CVE-2023-24456
|
MAVEN:GHSA-9963-GMH8-VVM6 | Session fixation vulnerability in Jenkins Keycloak Authentication Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |
|
Affected | <= 2.3.0 |
CVE-2023-24457
|
MAVEN:GHSA-9WRR-4R9V-26XC | CSRF vulnerability in Jenkins Keycloak Authentication Plugin | moderate |
2023-01-26T21:30:17
(19 months ago) |
|
Fixed | = 2.3.1 |
CVE-2023-24457
|
MAVEN:GHSA-9WRR-4R9V-26XC | CSRF vulnerability in Jenkins Keycloak Authentication Plugin | moderate |
2023-01-26T21:30:17
(19 months ago) |