VYPR

Maven package

org.jenkins-ci.plugins/mesos

pkg:maven/org.jenkins-ci.plugins/mesos

Vulnerabilities (2)

  • CVE-2018-1000421Jan 9, 2019
    affected < 0.18fixed 0.18

    An improper authorization vulnerability exists in Jenkins Mesos Plugin 0.17.1 and earlier in MesosCloud.java that allows attackers with Overall/Read access to initiate a test connection to an attacker-specified Mesos server with attacker-specified credentials IDs obtained through

  • CVE-2018-1000420Jan 9, 2019
    affected < 0.18fixed 0.18

    An improper authorization vulnerability exists in Jenkins Mesos Plugin 0.17.1 and earlier in MesosCloud.java that allows attackers with Overall/Read access to obtain credentials IDs for credentials stored in Jenkins.