VYPR

Maven package

com.amazonaws/aws-codebuild

pkg:maven/com.amazonaws/aws-codebuild

Vulnerabilities (1)

  • CVE-2018-1000404HigJul 9, 2018
    affected < 0.27fixed 0.27

    Jenkins project Jenkins AWS CodeBuild Plugin version 0.26 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSClientFactory.java, CodeBuilder.java that can result in Credentials Disclosure. This attack appear to be exploitable via local file access. Th