5 matches found
maven-archetype-3.3.0-1.1 on GA media (moderate)
maven-archetype-3.3.0-1.1 on GA media Announcement ID: openSUSE-SU-2024:14372-1 Rating: moderate Cross-References: CVE-2024-47197 CVSS scores: CVE-2024-47197 SUSE : 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can no...
CVE-2024-47197
creationtimestamp| type| source ---|---|--- 2024-09-26 11:16:57+00:00| seen| https://t.me/cvedetector/6388 2025-03-17 18:31:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7810...
at.stderr:archetype-simple (=1.4.1), at.stderr:maven-parent (=2.3.1) +1 more potentially affected by CVE-2024-47197 via org.apache.maven.plugins:maven-archetype-plugin (=3.2.1)
org.apache.maven.plugins:maven-archetype-plugin MAVEN version =3.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.maven.plugins:maven-archetype-plugin and may be impacted: - at.stderr:archetype-simple =1.4.1 - at.stderr:maven-parent =2.3....
CVE-2024-47197 Maven Archetype Plugin: Maven Archetype integration-test may package local settings into the published artifact, possibly containing credentials
Exposure of Sensitive Information to an Unauthorized Actor, Insecure Storage of Sensitive Information vulnerability in Maven Archetype Plugin. This issue affects Maven Archetype Plugin: from 3.2.1 before 3.3.0. Users are recommended to upgrade to version 3.3.0, which fixes the issue. Archetype...
CVE-2024-47197 Maven Archetype Plugin: Maven Archetype integration-test may package local settings into the published artifact, possibly containing credentials
Exposure of Sensitive Information to an Unauthorized Actor, Insecure Storage of Sensitive Information vulnerability in Maven Archetype Plugin. This issue affects Maven Archetype Plugin: from 3.2.1 before 3.3.0. Users are recommended to upgrade to version 3.3.0, which fixes the issue. Archetype...