org.jenkins-ci.plugins:support-core
Maven5 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting org.jenkins-ci.plugins:support-corepage 1 of 1
- CVE-2019-16539MEDIUMCVSS 6.5EG 6.5✓ Fixed in 2.642019-11-21
vulnerable: 1.0 ... 2.9 (74 versions)
A missing permission check in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete support bundles.
- CVE-2019-16540MEDIUMCVSS 6.5EG 6.5✓ Fixed in 2.642019-11-21
vulnerable: 1.0 ... 2.9 (74 versions)
A path traversal vulnerability in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete arbitrary files on the Jenkins master.
- CVE-2021-21621MEDIUMCVSS 5.3EG 5.3✓ Fixed in 2.72.12021-02-24
vulnerable: 1.0 ... 2.9 (85 versions)
Jenkins Support Core Plugin 2.72 and earlier provides the serialized user authentication as part of the "About user (basic authentication details only)" information, which can include the session ID of the user creating the support bundle …
- CVE-2022-25187MEDIUMCVSS 6.5EG 6.5✓ Fixed in 2.79.12022-02-15
vulnerable: 1.0 ... 2.9 (95 versions)
Jenkins Support Core Plugin 2.79 and earlier does not redact some sensitive information in the support bundle.
- CVE-2022-45383MEDIUMCVSS 6.5EG 6.5✓ Fixed in 1206.1208.v9b_7a_1d48db_0f2022-11-15
vulnerable: 1.0 ... 2.9 (113 versions)
An incorrect permission check in Jenkins Support Core Plugin 1206.v14049fa_b_d860 and earlier allows attackers with Support/DownloadBundle permission to download a previously created support bundle containing information limited to users w…
Check whether org.jenkins-ci.plugins:support-core is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.jenkins-ci.plugins:support-core CVEs against the assets you own.
Start Free Scan →