pkg:maven/org.jenkins-ci.plugins/support-core
Type
maven
Namespace
org.jenkins-ci.plugins
Name
support-core
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/support-core package.
High
2
Moderate
3
Medium
2
Low
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.63 |
CVE-2019-16539
CVE-2019-16540 |
JENKINS:SECURITY-1634 | `support-core` allowed users with Overall/Read permission to delete arbitrary files | high |
2019-11-21T00:00:00
(4 years ago) |
|
Fixed | = 2.64 |
CVE-2019-16539
CVE-2019-16540 |
JENKINS:SECURITY-1634 | `support-core` allowed users with Overall/Read permission to delete arbitrary files | high |
2019-11-21T00:00:00
(4 years ago) |
|
Affected | <= 2.72 |
CVE-2021-21621
|
JENKINS:SECURITY-2150 | Support bundles can include user session IDs in `support-core` | low |
2021-02-24T00:00:00
(3 years ago) |
|
Fixed | = 2.72.1 |
CVE-2021-21621
|
JENKINS:SECURITY-2150 | Support bundles can include user session IDs in `support-core` | low |
2021-02-24T00:00:00
(3 years ago) |
|
Affected | <= 2.79 |
CVE-2022-25187
|
JENKINS:SECURITY-2186 | Sensitive data stored in plain text by `support-core` | medium |
2022-02-15T00:00:00
(2 years ago) |
|
Fixed | = 2.79.1 |
CVE-2022-25187
|
JENKINS:SECURITY-2186 | Sensitive data stored in plain text by `support-core` | medium |
2022-02-15T00:00:00
(2 years ago) |
|
Affected | <= 1206.v14049fa_b_d860 |
CVE-2022-45383
|
JENKINS:SECURITY-2804 | Incorrect permission checks in `support-core` | medium |
2022-11-15T00:00:00
(22 months ago) |
|
Fixed | = 1206.1208.v9b_7a_1d48db_0f |
CVE-2022-45383
|
JENKINS:SECURITY-2804 | Incorrect permission checks in `support-core` | medium |
2022-11-15T00:00:00
(22 months ago) |
|
Affected | <= 2.63 |
CVE-2019-16540
|
MAVEN:GHSA-2CXG-448H-4WXJ | Jenkins Support Core Plugin allowed users with Overall/Read permission to delete arbitrary files | high |
2022-05-24T17:01:41
(2 years ago) |
|
Fixed | = 2.64 |
CVE-2019-16540
|
MAVEN:GHSA-2CXG-448H-4WXJ | Jenkins Support Core Plugin allowed users with Overall/Read permission to delete arbitrary files | high |
2022-05-24T17:01:41
(2 years ago) |
|
Affected | < 2.79.1 |
CVE-2022-25187
|
MAVEN:GHSA-5M8F-V3GW-H94W | Jenkins Support Core Plugin stores sensitive data in plain text | moderate |
2022-02-16T00:01:28
(2 years ago) |
|
Fixed | = 2.79.1 |
CVE-2022-25187
|
MAVEN:GHSA-5M8F-V3GW-H94W | Jenkins Support Core Plugin stores sensitive data in plain text | moderate |
2022-02-16T00:01:28
(2 years ago) |
|
Affected | <= 2.72 |
CVE-2021-21621
|
MAVEN:GHSA-92PG-8G57-HQPX | Support bundles can include user session IDs in Jenkins Support Core Plugin | low |
2022-05-24T17:43:01
(2 years ago) |
|
Fixed | = 2.72.1 |
CVE-2021-21621
|
MAVEN:GHSA-92PG-8G57-HQPX | Support bundles can include user session IDs in Jenkins Support Core Plugin | low |
2022-05-24T17:43:01
(2 years ago) |
|
Affected | <= 2.63 |
CVE-2019-16539
|
MAVEN:GHSA-J52R-PMQV-WM38 | Missing permission check in Jenkins Support Core Plugin | moderate |
2022-05-24T17:01:40
(2 years ago) |
|
Fixed | = 2.64 |
CVE-2019-16539
|
MAVEN:GHSA-J52R-PMQV-WM38 | Missing permission check in Jenkins Support Core Plugin | moderate |
2022-05-24T17:01:40
(2 years ago) |
|
Affected | <= 1206.v14049fa |
CVE-2022-45383
|
MAVEN:GHSA-W2J3-PQ63-339W | Incorrect permission checks in Jenkins Support Core Plugin | moderate |
2022-11-16T12:00:22
(22 months ago) |
|
Fixed | = 1206.1208.v9b_7a_1d48db_0f |
CVE-2022-45383
|
MAVEN:GHSA-W2J3-PQ63-339W | Incorrect permission checks in Jenkins Support Core Plugin | moderate |
2022-11-16T12:00:22
(22 months ago) |