pkg:maven/org.jenkins-ci.plugins/rpmsign-plugin
Type
maven
Namespace
org.jenkins-ci.plugins
Name
rpmsign-plugin
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/rpmsign-plugin package.
Moderate
1
Medium
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 0.5.0 |
CVE-2022-36893
|
 JENKINS:SECURITY-2403
|
Missing permission check in `rpmsign-plugin` allows listing workspace contents | medium |
2022-07-27T00:00:00
(2 years ago) |
|
| Fixed | = 0.5.1 |
CVE-2022-36893
|
JENKINS:SECURITY-2403
|
Missing permission check in `rpmsign-plugin` allows listing workspace contents | medium |
2022-07-27T00:00:00
(2 years ago) |
|
| Affected | <= 0.5.0 |
CVE-2022-36893
|
 MAVEN:GHSA-PW4G-JCP5-63M9
|
Jenkins rpmsign-plugin does not perform a permission check in a method implementing form validation | moderate |
2022-07-28T00:00:42
(2 years ago) |
|
| Fixed | = 0.5.1 |
CVE-2022-36893
|
MAVEN:GHSA-PW4G-JCP5-63M9
|
Jenkins rpmsign-plugin does not perform a permission check in a method implementing form validation | moderate |
2022-07-28T00:00:42
(2 years ago) |