pkg:maven/org.jenkins-ci.plugins/kubernetes
Type
maven
Namespace
org.jenkins-ci.plugins
Name
kubernetes
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/kubernetes package.
Medium
5
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 1.10.1 |
CVE-2018-1999040
|
 JENKINS:SECURITY-1016
|
CSRF vulnerability and missing permission checks in Kubernetes Plugin allowed capturing credentials | medium |
2018-07-30T00:00:00
(6 years ago) |
|
| Fixed | = 1.10.2 |
CVE-2018-1999040
|
JENKINS:SECURITY-1016
|
CSRF vulnerability and missing permission checks in Kubernetes Plugin allowed capturing credentials | medium |
2018-07-30T00:00:00
(6 years ago) |
|
| Affected | <= 1.27.3 |
CVE-2020-2307
|
JENKINS:SECURITY-1646
|
Jenkins controller environment variables accessible in `kubernetes` | medium |
2020-11-04T00:00:00
(3 years ago) |
|
| Fixed | = 1.27.4 |
CVE-2020-2307
|
JENKINS:SECURITY-1646
|
Jenkins controller environment variables accessible in `kubernetes` | medium |
2020-11-04T00:00:00
(3 years ago) |
|
| Affected | <= 1.27.3 |
CVE-2020-2308
|
JENKINS:SECURITY-2102
|
Missing permission check in `kubernetes` allows listing pod templates | medium |
2020-11-04T00:00:00
(3 years ago) |
|
| Fixed | = 1.27.4 |
CVE-2020-2308
|
JENKINS:SECURITY-2102
|
Missing permission check in `kubernetes` allows listing pod templates | medium |
2020-11-04T00:00:00
(3 years ago) |
|
| Affected | <= 1.27.3 |
CVE-2020-2309
|
JENKINS:SECURITY-2103
|
Missing permission check in `kubernetes` allows enumerating credentials IDs | medium |
2020-11-04T00:00:00
(3 years ago) |
|
| Fixed | = 1.27.4 |
CVE-2020-2309
|
JENKINS:SECURITY-2103
|
Missing permission check in `kubernetes` allows enumerating credentials IDs | medium |
2020-11-04T00:00:00
(3 years ago) |
|
| Affected | <= 3909.v1f2c633e8590 |
CVE-2023-30513
CVE-2023-30514 CVE-2023-30515 |
JENKINS:SECURITY-3075
|
Improper masking of credentials in multiple plugins | medium |
2023-04-12T00:00:00
(17 months ago) |
|
| Fixed | = 3910.ve59cec5e33ea_ |
CVE-2023-30513
CVE-2023-30514 CVE-2023-30515 |
JENKINS:SECURITY-3075
|
Improper masking of credentials in multiple plugins | medium |
2023-04-12T00:00:00
(17 months ago) |
|
| Affected | <= 1.7.0 |
CVE-2018-1000187
|
JENKINS:SECURITY-883
|
Kubernetes Plugin printed sensitive build variables to logs | low |
2018-06-04T00:00:00
(6 years ago) |
|
| Fixed | = 1.7.1 |
CVE-2018-1000187
|
JENKINS:SECURITY-883
|
Kubernetes Plugin printed sensitive build variables to logs | low |
2018-06-04T00:00:00
(6 years ago) |