pkg:maven/org.jenkins-ci.plugins/synopsys-coverity
Type
maven
Namespace
org.jenkins-ci.plugins
Name
synopsys-coverity
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/synopsys-coverity package.
High
1
Moderate
2
Medium
1
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 3.0.2 |
CVE-2023-23850
|
JENKINS:SECURITY-2793-1 | Missing permission checks in `synopsys-coverity` allow enumerating credentials IDs | medium |
2023-02-15T00:00:00
(19 months ago) |
|
Fixed | = 3.0.3 |
CVE-2023-23850
|
JENKINS:SECURITY-2793-1 | Missing permission checks in `synopsys-coverity` allow enumerating credentials IDs | medium |
2023-02-15T00:00:00
(19 months ago) |
|
Affected | <= 3.0.2 |
CVE-2023-23847
CVE-2023-23848 |
JENKINS:SECURITY-2793-2 | CSRF vulnerability and missing permission checks in `synopsys-coverity` allow capturing credentials | high |
2023-02-15T00:00:00
(19 months ago) |
|
Fixed | = 3.0.3 |
CVE-2023-23847
CVE-2023-23848 |
JENKINS:SECURITY-2793-2 | CSRF vulnerability and missing permission checks in `synopsys-coverity` allow capturing credentials | high |
2023-02-15T00:00:00
(19 months ago) |
|
Affected | <= 3.0.2 |
CVE-2023-23848
|
MAVEN:GHSA-C3V2-5388-V8PW | CSRF vulnerability in Jenkins Coverity Plugin allow capturing credentials | moderate |
2023-02-15T21:30:30
(19 months ago) |
|
Fixed | = 3.0.3 |
CVE-2023-23848
|
MAVEN:GHSA-C3V2-5388-V8PW | CSRF vulnerability in Jenkins Coverity Plugin allow capturing credentials | moderate |
2023-02-15T21:30:30
(19 months ago) |
|
Affected | < 3.0.3 |
CVE-2023-23850
|
MAVEN:GHSA-JWR6-75XH-JH5J | Synopsys Jenkins Coverity Plugin has Incorrect Default Permissions | moderate |
2023-02-15T21:30:30
(19 months ago) |
|
Fixed | = 3.0.3 |
CVE-2023-23850
|
MAVEN:GHSA-JWR6-75XH-JH5J | Synopsys Jenkins Coverity Plugin has Incorrect Default Permissions | moderate |
2023-02-15T21:30:30
(19 months ago) |
|
Affected | <= 3.0.2 |
CVE-2023-23847
|
MAVEN:GHSA-PX6V-6JHF-J46R | CSRF vulnerability in Synopsys Jenkins Coverity Plugin | low |
2023-02-15T21:30:30
(19 months ago) |
|
Fixed | = 3.0.3 |
CVE-2023-23847
|
MAVEN:GHSA-PX6V-6JHF-J46R | CSRF vulnerability in Synopsys Jenkins Coverity Plugin | low |
2023-02-15T21:30:30
(19 months ago) |