tech.powerjob:powerjob

Maven6 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting tech.powerjob:powerjobpage 1 of 1

CVE-2023-29921MEDIUMCVSS 5.3EG 5.3
2023-04-19
vulnerable: 3.0.0 ... 4.3.6 (9 versions)
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create app interface.
CVE-2023-29922MEDIUMCVSS 5.3EG 9.0
2023-04-19
vulnerable: 3.0.0 ... 4.3.9 (12 versions)
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.
CVE-2023-29923MEDIUMCVSS 5.3EG 9.0
2023-04-19
vulnerable: 3.0.0, 4.0.0, 4.3.1
PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface.
CVE-2023-29924CRITICALCVSS 9.8EG 9.8
2023-04-21
vulnerable: 3.0.0 ... 4.3.6 (9 versions)
PowerJob V4.3.1 is vulnerable to Incorrect Access Control that allows for remote code execution.
CVE-2023-29926CRITICALCVSS 9.8EG 9.8
2023-04-20
vulnerable: 3.0.0, 4.0.0, 4.3.1, 4.3.1-bugfix, 4.3.2
PowerJob V4.3.2 has unauthorized interface that causes remote code execution.
CVE-2023-36106HIGHCVSS 7.5EG 7.5
2023-08-17
vulnerable: 3.0.0, 4.0.0, 4.3.1, 4.3.1-bugfix, 4.3.2
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list.

Check whether tech.powerjob:powerjob is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for tech.powerjob:powerjob CVEs against the assets you own.

Start Free Scan →