Lucene search
JenkinsCVELIST:CVE-2022-34800HistoryJun 30, 2022 - 5:48 p.m.
CVE-2022-34800
2022-06-3017:48:04
jenkins
www.cve.org
Jenkins Build Notifications Plugin 1.5.0 and earlier stores tokens unencrypted in its global configuration files on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.
CNA Affected
[
{
"product": "Jenkins Build Notifications Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "1.5.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 1.5.0",
"versionType": "custom"
}
]
}
]Related
osv
osv
Plaintext Storage of a Password in Jenkins Build Notifications Plugin
2022-07-01 00:01:07
cnvd
cnvd
Jenkins Build Notifications Plugin信息泄露漏洞
2022-07-04 00:00:00
cve
cve
CVE-2022-34800
2022-06-30 18:15:13
github
github
Plaintext Storage of a Password in Jenkins Build Notifications Plugin
2022-07-01 00:01:07
prion
prion
Design/Logic Flaw
2022-06-30 18:15:00
nvd
nvd
CVE-2022-34800
2022-06-30 18:15:13
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-06-30)
2023-08-04 00:00:00