Lucene search
China National Vulnerability DatabaseCNVD-2022-53893HistoryJul 04, 2022 - 12:00 a.m.
Jenkins Cisco Spark Plugin信息泄露漏洞
2022-07-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
jenkins
cisco spark plugin
information disclosure
EPSS
0.001
Percentile
22.0%
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.An information disclosure vulnerability exists in Jenkins Cisco Spark Plugin version 1.1.1 and earlier, which stems from storing unencrypted, unmarked tokens in the Jenkins controller’s global configuration file, which can be exploited by an attacker to cause sensitive information to be accessed.
Related
osv
osv
Token stored in plain text by Jenkins Cisco Spark Plugin
2022-07-01 00:01:08
github
github
Token stored in plain text by Jenkins Cisco Spark Plugin
2022-07-01 00:01:08
prion
prion
Design/Logic Flaw
2022-06-30 18:15:00
cve
cve
CVE-2022-34808
2022-06-30 18:15:14
cvelist
cvelist
CVE-2022-34808
2022-06-30 17:48:49
nvd
nvd
CVE-2022-34808
2022-06-30 18:15:14
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-06-30)
2023-08-04 00:00:00