pkg:maven/org.jenkins-ci.plugins/threadfix
Type
maven
Namespace
org.jenkins-ci.plugins
Name
threadfix
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/threadfix package.
Moderate
2
Medium
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 1.5.4 |
CVE-2022-34209
CVE-2022-34210 |
 JENKINS:SECURITY-2249
|
CSRF vulnerability and missing permission check in `threadfix` | medium |
2022-06-22T00:00:00
(2 years ago) |
|
| Affected | <= 1.5.4 |
CVE-2022-34210
|
 MAVEN:GHSA-77VQ-4J66-46M5
|
Missing permission check in Jenkins ThreadFix Plugin | moderate |
2022-06-24T00:00:32
(2 years ago) |
|
| Affected | <= 1.5.4 |
CVE-2022-34209
|
MAVEN:GHSA-RQ99-93C5-33F6
|
Cross-Site Request Forgery in Jenkins ThreadFix Plugin | moderate |
2022-06-24T00:00:32
(2 years ago) |