logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2019-16543

Description

Jenkins Spira Importer Plugin 3.2.2 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.


Affected Package


OS OS Version Package Name Package Version
Alpine 3.14-community jenkins 2.297-r0
Alpine 3.15-community jenkins 2.319.3-r0
Alpine 3.16-community jenkins 2.332.3-r0
Alpine edge-community jenkins 2.332.4-r0

Related