pkg:maven/org.jenkins-ci.plugins/mailer
Type
maven
Namespace
org.jenkins-ci.plugins
Name
mailer
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/mailer package.
High
1
Moderate
3
Medium
3
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.32 |
CVE-2020-2252
|
JENKINS:SECURITY-1813 | Missing hostname validation in `mailer` | medium |
2020-09-16T00:00:00
(4 years ago) |
|
Fixed | = 1.32.1 |
CVE-2020-2252
|
JENKINS:SECURITY-1813 | Missing hostname validation in `mailer` | medium |
2020-09-16T00:00:00
(4 years ago) |
|
Affected | <= 391.ve4a_38c1b_cf4b_ |
CVE-2022-20613
CVE-2022-20614 |
JENKINS:SECURITY-2163 | CSRF vulnerability and missing permission checks in `mailer` | medium |
2022-01-12T00:00:00
(2 years ago) |
|
Fixed | = 408.vd726a_1130320 |
CVE-2022-20613
CVE-2022-20614 |
JENKINS:SECURITY-2163 | CSRF vulnerability and missing permission checks in `mailer` | medium |
2022-01-12T00:00:00
(2 years ago) |
|
Affected | <= 1.20 |
CVE-2018-8718
|
JENKINS:SECURITY-774 | Mailer Plugin allowed unauthorized users to send test emails | medium |
2018-03-26T00:00:00
(6 years ago) |
|
Fixed | = 1.21 |
CVE-2018-8718
|
JENKINS:SECURITY-774 | Mailer Plugin allowed unauthorized users to send test emails | medium |
2018-03-26T00:00:00
(6 years ago) |
|
Affected | < 1.34.2 >= 391.ve4a38c1bcf4b, < 408.vd726a |
CVE-2022-20614
|
MAVEN:GHSA-558X-H7RG-997V | Incorrect Permission Assignment for Critical Resource in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
Fixed | = 1.34.2 = 408.vd726a |
CVE-2022-20614
|
MAVEN:GHSA-558X-H7RG-997V | Incorrect Permission Assignment for Critical Resource in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
Affected | < 1.29.1 >= 1.30, < 1.31.1 = 1.32 |
CVE-2020-2252
|
MAVEN:GHSA-6FR3-286Q-Q3CR | Improper Validation of Certificate with Host Mismatch in Jenkins Mailer Plugin | moderate |
2022-05-24T17:28:25
(2 years ago) |
|
Fixed | = 1.29.1 = 1.31.1 = 1.32.1 |
CVE-2020-2252
|
MAVEN:GHSA-6FR3-286Q-Q3CR | Improper Validation of Certificate with Host Mismatch in Jenkins Mailer Plugin | moderate |
2022-05-24T17:28:25
(2 years ago) |
|
Affected | <= 1.20 |
CVE-2018-8718
|
MAVEN:GHSA-6G57-H38C-Q52G | Cross-Site Request Forgery in Jenkins Mailer Plugin | high |
2022-05-14T01:29:12
(2 years ago) |
|
Fixed | = 1.21 |
CVE-2018-8718
|
MAVEN:GHSA-6G57-H38C-Q52G | Cross-Site Request Forgery in Jenkins Mailer Plugin | high |
2022-05-14T01:29:12
(2 years ago) |
|
Affected | < 1.34.2 >= 391.ve4a38c1bcf4b, < 408.vd726a |
CVE-2022-20613
|
MAVEN:GHSA-85RQ-HP8X-GHJQ | Cross-Site Request Forgery in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
Fixed | = 1.34.2 = 408.vd726a |
CVE-2022-20613
|
MAVEN:GHSA-85RQ-HP8X-GHJQ | Cross-Site Request Forgery in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
Affected | <= 1.19 |
CVE-2017-2651
|
MAVEN:GHSA-9V72-P5P3-9W65 | Exposure of Sensitive Information to an Unauthorized Actor in Jenkins-mailer-plugin | low |
2022-05-13T01:36:51
(2 years ago) |
|
Fixed | = 1.20 |
CVE-2017-2651
|
MAVEN:GHSA-9V72-P5P3-9W65 | Exposure of Sensitive Information to an Unauthorized Actor in Jenkins-mailer-plugin | low |
2022-05-13T01:36:51
(2 years ago) |