Lucene search
JenkinsCVELIST:CVE-2021-21614HistoryJan 13, 2021 - 3:55 p.m.
CVE-2021-21614
2021-01-1315:55:34
jenkins
www.cve.org
Jenkins Bumblebee HP ALM Plugin 4.1.5 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.
CNA Affected
[
{
"product": "Jenkins Bumblebee HP ALM Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "4.1.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2021-21614
2021-01-13 16:15:14
osv
osv
Credentials stored in plain text by Jenkins Bumblebee HP ALM Plugin
2022-05-24 17:39:13
CVE-2021-21614
2021-01-13 16:15:14
prion
prion
Design/Logic Flaw
2021-01-13 16:15:00
veracode
veracode
Information Disclosure
2021-01-14 16:24:27
nvd
nvd
CVE-2021-21614
2021-01-13 16:15:14
alpinelinux
alpinelinux
CVE-2021-21614
2021-01-13 16:15:14
github
github
Credentials stored in plain text by Jenkins Bumblebee HP ALM Plugin
2022-05-24 17:39:13
