Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-67359

log4j dependency has critical vulnerability CVE-2021-44228 in Pipeline: HuaweiCloud Steps Plugin

XMLWordPrintable

      See JENKINS-67353

      https://github.com/jenkinsci/pipeline-huaweicloud-plugin

      Update to 2.15 is not sufficient due to https://nvd.nist.gov/vuln/detail/CVE-2021-45046, it requires 2.16.
      This one is less important but will still be detected by scanners and alert all users.

            zhongjun2 zhongjun2
            danielbeck Daniel Beck
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: