pkg:maven/org.jenkins-ci.plugins/libvirt-slave
Type
maven
Namespace
org.jenkins-ci.plugins
Name
libvirt-slave
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/libvirt-slave package.
High
2
Moderate
2
Medium
3
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 1.8.5 |
CVE-2019-10471
CVE-2019-10472 |
 JENKINS:SECURITY-1014-1
|
CSRF vulnerability and missing permission checks in `libvirt-slave` allowed capturing credentials | medium |
2019-10-23T00:00:00
(4 years ago) |
|
| Affected | <= 1.8.5 |
CVE-2019-10473
|
JENKINS:SECURITY-1014-2
|
Users with Overall/Read access could enumerate credential IDs in `libvirt-slave` | medium |
2019-10-23T00:00:00
(4 years ago) |
|
| Affected | <= 1.9.0 |
CVE-2021-21627
|
JENKINS:SECURITY-1764
|
CSRF vulnerability in `libvirt-slave` | medium |
2021-03-18T00:00:00
(3 years ago) |
|
| Fixed | = 1.9.1 |
CVE-2021-21627
|
JENKINS:SECURITY-1764
|
CSRF vulnerability in `libvirt-slave` | medium |
2021-03-18T00:00:00
(3 years ago) |
|
| Affected | < 1.8.6 |
CVE-2019-10473
|
 MAVEN:GHSA-8J3M-J6X6-CP5V
|
Jenkins Libvirt Slaves Plugin vlnerable to Credential Enumeration | moderate |
2022-05-24T16:59:37
(2 years ago) |
|
| Fixed | = 1.8.6 |
CVE-2019-10473
|
MAVEN:GHSA-8J3M-J6X6-CP5V
|
Jenkins Libvirt Slaves Plugin vlnerable to Credential Enumeration | moderate |
2022-05-24T16:59:37
(2 years ago) |
|
| Affected | < 1.8.6 |
CVE-2019-10471
|
MAVEN:GHSA-M295-M3X4-3MMC
|
Jenkins Libvirt Slaves Plugin vlnerable to Cross-Site Request Forgery | high |
2022-05-24T16:59:37
(2 years ago) |
|
| Fixed | = 1.8.6 |
CVE-2019-10471
|
MAVEN:GHSA-M295-M3X4-3MMC
|
Jenkins Libvirt Slaves Plugin vlnerable to Cross-Site Request Forgery | high |
2022-05-24T16:59:37
(2 years ago) |
|
| Affected | < 1.8.6 |
CVE-2019-10472
|
MAVEN:GHSA-M36J-F2HF-QGJ2
|
Jenkins Libvirt Slaves Plugin vlnerable to Incorrect Default Permissions | moderate |
2022-05-24T16:59:38
(2 years ago) |
|
| Fixed | = 1.8.6 |
CVE-2019-10472
|
MAVEN:GHSA-M36J-F2HF-QGJ2
|
Jenkins Libvirt Slaves Plugin vlnerable to Incorrect Default Permissions | moderate |
2022-05-24T16:59:38
(2 years ago) |
|
| Affected | <= 1.9.0 |
CVE-2021-21627
|
MAVEN:GHSA-MM5C-7MPR-99FM
|
CSRF vulnerability in Jenkins Libvirt Agents Plugin | high |
2022-05-24T17:44:48
(2 years ago) |
|
| Fixed | = 1.9.1 |
CVE-2021-21627
|
MAVEN:GHSA-MM5C-7MPR-99FM
|
CSRF vulnerability in Jenkins Libvirt Agents Plugin | high |
2022-05-24T17:44:48
(2 years ago) |