pkg:maven/org.jenkins-ci.plugins/mailer
Type
maven
Namespace
org.jenkins-ci.plugins
Name
mailer
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/mailer package.
High
1
Moderate
3
Medium
3
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 1.32 |
CVE-2020-2252
|
 JENKINS:SECURITY-1813
|
Missing hostname validation in `mailer` | medium |
2020-09-16T00:00:00
(4 years ago) |
|
| Fixed | = 1.32.1 |
CVE-2020-2252
|
JENKINS:SECURITY-1813
|
Missing hostname validation in `mailer` | medium |
2020-09-16T00:00:00
(4 years ago) |
|
| Affected | <= 391.ve4a_38c1b_cf4b_ |
CVE-2022-20613
CVE-2022-20614 |
JENKINS:SECURITY-2163
|
CSRF vulnerability and missing permission checks in `mailer` | medium |
2022-01-12T00:00:00
(2 years ago) |
|
| Fixed | = 408.vd726a_1130320 |
CVE-2022-20613
CVE-2022-20614 |
JENKINS:SECURITY-2163
|
CSRF vulnerability and missing permission checks in `mailer` | medium |
2022-01-12T00:00:00
(2 years ago) |
|
| Affected | <= 1.20 |
CVE-2018-8718
|
JENKINS:SECURITY-774
|
Mailer Plugin allowed unauthorized users to send test emails | medium |
2018-03-26T00:00:00
(6 years ago) |
|
| Fixed | = 1.21 |
CVE-2018-8718
|
JENKINS:SECURITY-774
|
Mailer Plugin allowed unauthorized users to send test emails | medium |
2018-03-26T00:00:00
(6 years ago) |
|
| Affected | < 1.34.2 >= 391.ve4a38c1bcf4b, < 408.vd726a |
CVE-2022-20614
|
 MAVEN:GHSA-558X-H7RG-997V
|
Incorrect Permission Assignment for Critical Resource in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
| Fixed | = 1.34.2 = 408.vd726a |
CVE-2022-20614
|
MAVEN:GHSA-558X-H7RG-997V
|
Incorrect Permission Assignment for Critical Resource in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
| Affected | < 1.29.1 >= 1.30, < 1.31.1 = 1.32 |
CVE-2020-2252
|
MAVEN:GHSA-6FR3-286Q-Q3CR
|
Improper Validation of Certificate with Host Mismatch in Jenkins Mailer Plugin | moderate |
2022-05-24T17:28:25
(2 years ago) |
|
| Fixed | = 1.29.1 = 1.31.1 = 1.32.1 |
CVE-2020-2252
|
MAVEN:GHSA-6FR3-286Q-Q3CR
|
Improper Validation of Certificate with Host Mismatch in Jenkins Mailer Plugin | moderate |
2022-05-24T17:28:25
(2 years ago) |
|
| Affected | <= 1.20 |
CVE-2018-8718
|
MAVEN:GHSA-6G57-H38C-Q52G
|
Cross-Site Request Forgery in Jenkins Mailer Plugin | high |
2022-05-14T01:29:12
(2 years ago) |
|
| Fixed | = 1.21 |
CVE-2018-8718
|
MAVEN:GHSA-6G57-H38C-Q52G
|
Cross-Site Request Forgery in Jenkins Mailer Plugin | high |
2022-05-14T01:29:12
(2 years ago) |
|
| Affected | < 1.34.2 >= 391.ve4a38c1bcf4b, < 408.vd726a |
CVE-2022-20613
|
MAVEN:GHSA-85RQ-HP8X-GHJQ
|
Cross-Site Request Forgery in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
| Fixed | = 1.34.2 = 408.vd726a |
CVE-2022-20613
|
MAVEN:GHSA-85RQ-HP8X-GHJQ
|
Cross-Site Request Forgery in Jenkins Mailer Plugin | moderate |
2022-01-13T00:01:04
(2 years ago) |
|
| Affected | <= 1.19 |
CVE-2017-2651
|
MAVEN:GHSA-9V72-P5P3-9W65
|
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins-mailer-plugin | low |
2022-05-13T01:36:51
(2 years ago) |
|
| Fixed | = 1.20 |
CVE-2017-2651
|
MAVEN:GHSA-9V72-P5P3-9W65
|
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins-mailer-plugin | low |
2022-05-13T01:36:51
(2 years ago) |