pkg:maven/org.jenkins-ci.plugins/support-core
Type
maven
Namespace
org.jenkins-ci.plugins
Name
support-core
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/support-core package.
High
2
Moderate
3
Medium
2
Low
2
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 2.63 |
CVE-2019-16539
CVE-2019-16540 |
 JENKINS:SECURITY-1634
|
`support-core` allowed users with Overall/Read permission to delete arbitrary files | high |
2019-11-21T00:00:00
(4 years ago) |
|
| Fixed | = 2.64 |
CVE-2019-16539
CVE-2019-16540 |
JENKINS:SECURITY-1634
|
`support-core` allowed users with Overall/Read permission to delete arbitrary files | high |
2019-11-21T00:00:00
(4 years ago) |
|
| Affected | <= 2.72 |
CVE-2021-21621
|
JENKINS:SECURITY-2150
|
Support bundles can include user session IDs in `support-core` | low |
2021-02-24T00:00:00
(3 years ago) |
|
| Fixed | = 2.72.1 |
CVE-2021-21621
|
JENKINS:SECURITY-2150
|
Support bundles can include user session IDs in `support-core` | low |
2021-02-24T00:00:00
(3 years ago) |
|
| Affected | <= 2.79 |
CVE-2022-25187
|
JENKINS:SECURITY-2186
|
Sensitive data stored in plain text by `support-core` | medium |
2022-02-15T00:00:00
(2 years ago) |
|
| Fixed | = 2.79.1 |
CVE-2022-25187
|
JENKINS:SECURITY-2186
|
Sensitive data stored in plain text by `support-core` | medium |
2022-02-15T00:00:00
(2 years ago) |
|
| Affected | <= 1206.v14049fa_b_d860 |
CVE-2022-45383
|
JENKINS:SECURITY-2804
|
Incorrect permission checks in `support-core` | medium |
2022-11-15T00:00:00
(22 months ago) |
|
| Fixed | = 1206.1208.v9b_7a_1d48db_0f |
CVE-2022-45383
|
JENKINS:SECURITY-2804
|
Incorrect permission checks in `support-core` | medium |
2022-11-15T00:00:00
(22 months ago) |
|
| Affected | <= 2.63 |
CVE-2019-16540
|
 MAVEN:GHSA-2CXG-448H-4WXJ
|
Jenkins Support Core Plugin allowed users with Overall/Read permission to delete arbitrary files | high |
2022-05-24T17:01:41
(2 years ago) |
|
| Fixed | = 2.64 |
CVE-2019-16540
|
MAVEN:GHSA-2CXG-448H-4WXJ
|
Jenkins Support Core Plugin allowed users with Overall/Read permission to delete arbitrary files | high |
2022-05-24T17:01:41
(2 years ago) |
|
| Affected | < 2.79.1 |
CVE-2022-25187
|
MAVEN:GHSA-5M8F-V3GW-H94W
|
Jenkins Support Core Plugin stores sensitive data in plain text | moderate |
2022-02-16T00:01:28
(2 years ago) |
|
| Fixed | = 2.79.1 |
CVE-2022-25187
|
MAVEN:GHSA-5M8F-V3GW-H94W
|
Jenkins Support Core Plugin stores sensitive data in plain text | moderate |
2022-02-16T00:01:28
(2 years ago) |
|
| Affected | <= 2.72 |
CVE-2021-21621
|
MAVEN:GHSA-92PG-8G57-HQPX
|
Support bundles can include user session IDs in Jenkins Support Core Plugin | low |
2022-05-24T17:43:01
(2 years ago) |
|
| Fixed | = 2.72.1 |
CVE-2021-21621
|
MAVEN:GHSA-92PG-8G57-HQPX
|
Support bundles can include user session IDs in Jenkins Support Core Plugin | low |
2022-05-24T17:43:01
(2 years ago) |
|
| Affected | <= 2.63 |
CVE-2019-16539
|
MAVEN:GHSA-J52R-PMQV-WM38
|
Missing permission check in Jenkins Support Core Plugin | moderate |
2022-05-24T17:01:40
(2 years ago) |
|
| Fixed | = 2.64 |
CVE-2019-16539
|
MAVEN:GHSA-J52R-PMQV-WM38
|
Missing permission check in Jenkins Support Core Plugin | moderate |
2022-05-24T17:01:40
(2 years ago) |
|
| Affected | <= 1206.v14049fa |
CVE-2022-45383
|
MAVEN:GHSA-W2J3-PQ63-339W
|
Incorrect permission checks in Jenkins Support Core Plugin | moderate |
2022-11-16T12:00:22
(22 months ago) |
|
| Fixed | = 1206.1208.v9b_7a_1d48db_0f |
CVE-2022-45383
|
MAVEN:GHSA-W2J3-PQ63-339W
|
Incorrect permission checks in Jenkins Support Core Plugin | moderate |
2022-11-16T12:00:22
(22 months ago) |