Maven package
org.jenkins-ci.plugins/oracle-cloud-infrastructure-compute
pkg:maven/org.jenkins-ci.plugins/oracle-cloud-infrastructure-compute
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-37948 | Low | 3.7 | < 1.0.17 | 1.0.17 | Jul 12, 2023 | Jenkins Oracle Cloud Infrastructure Compute Plugin 1.0.16 and earlier does not validate SSH host keys when connecting OCI clouds, enabling man-in-the-middle attacks. |
- affected < 1.0.17fixed 1.0.17
Jenkins Oracle Cloud Infrastructure Compute Plugin 1.0.16 and earlier does not validate SSH host keys when connecting OCI clouds, enabling man-in-the-middle attacks.