5 matches found
br.com.ingenieux.jenkins.plugins:codecommit-url-helper (=0.0.1), cf.pgmann.plugins:url-auth-sso (=1.0) +128 more potentially affected by CVE-2020-2252 via org.jenkins-ci.plugins:mailer (>=1.10 <=1.23)
org.jenkins-ci.plugins:mailer MAVEN version =1.10, =1.9.2-beta, =1.14.0, =4.1.1, =2.30.2, =1.0.22, =1.3.0, =0.11.0, =1.0, =1.0.0, =1.0.1 and more Source cves: CVE-2020-2252 Source advisory: OSV:GHSA-6FR3-286Q-Q3CR...
Moderate: Red Hat Security Advisory: OpenShift Container Platform 3.11.318 jenkins-2-plugins security update
An update for jenkins-2-plugins is now available for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.6.1 package security update
An update for jenkins-2-plugins, openshift-clients, podman, runc, and skopeo is now available for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...
CVE-2020-2252
Jenkins Mailer Plugin 1.32 and earlier does not perform hostname validation when connecting to the configured SMTP server...
CVE-2020-2252
CVE-2020-2252 affects Jenkins Mailer Plugin prior to 1.32. The issue is that the plugin did not perform hostname validation when connecting to the configured SMTP server, enabling potential man-in-the-middle tampering of TLS connections. Exploitation details are not provided in the supplied docum...