VYPR

Maven package

com.amazonaws/codedeploy

pkg:maven/com.amazonaws/codedeploy

Vulnerabilities (2)

  • CVE-2018-1000403HigJul 9, 2018
    affected < 1.20fixed 1.20

    Jenkins project Jenkins AWS CodeDeploy Plugin version 1.19 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSCodeDeployPublisher.java that can result in Credentials Disclosure. This attack appear to be exploitable via local file access. This vulnerab

  • CVE-2018-1000402MedJul 9, 2018
    affected < 1.20fixed 1.20

    Jenkins project Jenkins AWS CodeDeploy Plugin version 1.19 and earlier contains a File and Directory Information Exposure vulnerability in AWSCodeDeployPublisher.java that can result in Disclosure of environment variables. This vulnerability appears to have been fixed in 1.20 and