Search for packages
| purl | pkg:maven/org.jenkins-ci.plugins.workflow/workflow-cps@3993.v3e20a |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-napj-3e58-nqav | Rebuilding a run with revoked script approval allowed by Jenkins Pipeline: Groovy Plugin Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a_388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main (Jenkinsfile) script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build whose (Jenkinsfile) script is no longer approved. This allows attackers with Item/Build permission to rebuild a previous build whose (Jenkinsfile) script is no longer approved. Pipeline: Groovy Plugin 3993.v3e20a_37282f8 refuses to rebuild a build whose main (Jenkinsfile) script is unapproved. |
CVE-2024-52550
GHSA-mrpr-vr82-x88r |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-07T04:56:25.880877+00:00 | GHSA Importer | Fixing | VCID-napj-3e58-nqav | https://github.com/advisories/GHSA-mrpr-vr82-x88r | 38.1.0 |
| 2026-04-02T12:40:24.112567+00:00 | GitLab Importer | Fixing | VCID-napj-3e58-nqav | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins.workflow/workflow-cps/CVE-2024-52550.yml | 38.0.0 |
| 2026-04-01T12:51:13.358739+00:00 | GithubOSV Importer | Fixing | VCID-napj-3e58-nqav | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/11/GHSA-mrpr-vr82-x88r/GHSA-mrpr-vr82-x88r.json | 38.0.0 |