VYPR

Maven package

com.amazonaws/aws-codepipeline

pkg:maven/com.amazonaws/aws-codepipeline

Vulnerabilities (1)

  • CVE-2018-1000401HigJul 9, 2018
    affected < 0.37fixed 0.37

    Jenkins project Jenkins AWS CodePipeline Plugin version 0.36 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSCodePipelineSCM.java that can result in Credentials Disclosure. This attack appear to be exploitable via local file access. This vulnerabil