Sshd-core-2.8.0.jar and sshd-common-2.8.0.jar of subversion plugin are marked as vulnerable

sshd-core-2.8.0.jar and sshd-common-2.8.0.jar of subversion plugin are marked as vulnerable.
Critical: NVD - CVE-2022-45047
Medium: NVD - CVE-2023-35887
Just want to know how these are impacting the Subversion plugin. Requesting help on how these can be remediated.

1 Like

If the security team has published no explicit vulnerability caused by these in a Jenkins plugin, they are not of concern.

2 Likes