Jenkins Parameterized Remote Trigger Plugin stores unencrypted secret in global configuration fil
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
Github Security Blog | Secret stored in plain text by Jenkins Parameterized Remote Trigger Plugin | 24 May 202217:27 | – | github |
AlpineLinux | CVE-2020-2239 | 1 Sep 202014:15 | – | alpinelinux |
CVE | CVE-2020-2239 | 1 Sep 202014:15 | – | cve |
OSV | CVE-2020-2239 | 1 Sep 202014:15 | – | osv |
OSV | Secret stored in plain text by Jenkins Parameterized Remote Trigger Plugin | 24 May 202217:27 | – | osv |
NVD | CVE-2020-2239 | 1 Sep 202014:15 | – | nvd |
Prion | Design/Logic Flaw | 1 Sep 202014:15 | – | prion |
[
{
"product": "Jenkins Parameterized Remote Trigger Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "3.1.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]
Source | Link |
---|---|
openwall | www.openwall.com/lists/oss-security/2020/09/01/3 |
jenkins | www.jenkins.io/security/advisory/2020-09-01/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo