Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.jenkins-ci.plugins/script-security@1368.vb
purl pkg:maven/org.jenkins-ci.plugins/script-security@1368.vb
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-rx46-cr1m-uuge Missing permission check in Jenkins Script Security Plugin Jenkins Script Security Plugin 1367.vdf2fc45f229c and earlier, except 1365.1367.va_3b_b_89f8a_95b_ and 1362.1364.v4cf2dc5d8776, does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of files on the controller file system. This allows attackers with Overall/Read permission to check for the existence of files on the controller file system. Script Security Plugin 1368.vb_b_402e3547e7 requires Overall/Administer permission for the affected form validation method. CVE-2024-52549
GHSA-jv82-75fh-23r7

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-07T04:56:25.904808+00:00 GHSA Importer Fixing VCID-rx46-cr1m-uuge https://github.com/advisories/GHSA-jv82-75fh-23r7 38.1.0
2026-04-02T12:40:24.140125+00:00 GitLab Importer Fixing VCID-rx46-cr1m-uuge https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins/script-security/CVE-2024-52549.yml 38.0.0
2026-04-01T12:51:12.720686+00:00 GithubOSV Importer Fixing VCID-rx46-cr1m-uuge https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/11/GHSA-jv82-75fh-23r7/GHSA-jv82-75fh-23r7.json 38.0.0