pkg:maven/org.jenkins-ci.plugins/s3
Type
maven
Namespace
org.jenkins-ci.plugins
Name
s3
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/s3 package.
Moderate
3
Medium
3
Low
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 0.11.4 |
CVE-2020-2114
|
JENKINS:SECURITY-1684 | Credential transmitted in plain text by `s3` | low |
2020-02-12T00:00:00
(4 years ago) |
|
Fixed | = 0.11.5 |
CVE-2020-2114
|
JENKINS:SECURITY-1684 | Credential transmitted in plain text by `s3` | low |
2020-02-12T00:00:00
(4 years ago) |
|
Affected | <= 0.11.6 |
CVE-2021-21650
|
JENKINS:SECURITY-2200 | Missing permission checks in `s3` allow obtaining metadata about artifacts | medium |
2021-05-11T00:00:00
(3 years ago) |
|
Fixed | = 0.11.7 |
CVE-2021-21650
|
JENKINS:SECURITY-2200 | Missing permission checks in `s3` allow obtaining metadata about artifacts | medium |
2021-05-11T00:00:00
(3 years ago) |
|
Affected | <= 0.11.6 |
CVE-2021-21651
|
JENKINS:SECURITY-2201 | Missing permission check in `s3` | medium |
2021-05-11T00:00:00
(3 years ago) |
|
Fixed | = 0.11.7 |
CVE-2021-21651
|
JENKINS:SECURITY-2201 | Missing permission check in `s3` | medium |
2021-05-11T00:00:00
(3 years ago) |
|
Affected | <= 0.10.12 |
CVE-2018-1000177
|
JENKINS:SECURITY-730 | Stored XSS vulnerability in S3 Publisher Plugin | medium |
2018-04-16T00:00:00
(6 years ago) |
|
Fixed | = 0.11.0 |
CVE-2018-1000177
|
JENKINS:SECURITY-730 | Stored XSS vulnerability in S3 Publisher Plugin | medium |
2018-04-16T00:00:00
(6 years ago) |
|
Affected | <= 0.10.12 |
CVE-2018-1000177
|
MAVEN:GHSA-3892-QQV6-H2QM | Stored XSS vulnerability in Jenkins S3 Publisher Plugin | moderate |
2022-05-14T03:18:39
(2 years ago) |
|
Fixed | = 0.11.0 |
CVE-2018-1000177
|
MAVEN:GHSA-3892-QQV6-H2QM | Stored XSS vulnerability in Jenkins S3 Publisher Plugin | moderate |
2022-05-14T03:18:39
(2 years ago) |
|
Affected | <= 0.11.4 |
CVE-2020-2114
|
MAVEN:GHSA-FFR6-8CV5-J637 | Jenkins S3 Publisher Plugin transmits credentials in plain text during configuration | low |
2022-05-24T17:08:46
(2 years ago) |
|
Fixed | = 0.11.5 |
CVE-2020-2114
|
MAVEN:GHSA-FFR6-8CV5-J637 | Jenkins S3 Publisher Plugin transmits credentials in plain text during configuration | low |
2022-05-24T17:08:46
(2 years ago) |
|
Affected | < 0.11.5.1 = 0.11.6 |
CVE-2021-21650
|
MAVEN:GHSA-FVFC-8PQR-WJPV | Missing Authorization in Jenkins S3 publisher Plugin | moderate |
2021-06-16T17:29:08
(3 years ago) |
|
Fixed | = 0.11.5.1 = 0.11.7 |
CVE-2021-21650
|
MAVEN:GHSA-FVFC-8PQR-WJPV | Missing Authorization in Jenkins S3 publisher Plugin | moderate |
2021-06-16T17:29:08
(3 years ago) |
|
Affected | < 0.11.5.1 = 0.11.6 |
CVE-2021-21651
|
MAVEN:GHSA-W5RH-J4G3-JR29 | Missing Authorization in Jenkins S3 publisher Plugin | moderate |
2021-06-16T17:29:17
(3 years ago) |
|
Fixed | = 0.11.5.1 = 0.11.7 |
CVE-2021-21651
|
MAVEN:GHSA-W5RH-J4G3-JR29 | Missing Authorization in Jenkins S3 publisher Plugin | moderate |
2021-06-16T17:29:17
(3 years ago) |