Lucene search
GitHub Advisory DatabaseGHSA-XR37-PJFH-QWWCHistoryMay 24, 2022 - 5:07 p.m.
Fortify Plugin stored credentials in plain text
2022-05-2417:07:41
CWE-256
CWE-522
GitHub Advisory Database
github.com
5
0.001 Low
EPSS
Percentile
21.3%
Fortify Plugin 19.1.29 and earlier stored its proxy server password unencrypted in job config.xml files. This password could be read by users with the Extended Read permission.
Fortify Plugin 19.2.30 now encrypts the proxy server password.
| CPE | Name | Operator | Version |
|---|---|---|---|
| org.jenkins-ci.plugins:fortify | le | 19.1.29 |
Related
osv
osv
Fortify Plugin stored credentials in plain text
2022-05-24 17:07:41
cve
cve
CVE-2020-2107
2020-01-29 16:15:00
alpinelinux
alpinelinux
CVE-2020-2107
2020-01-29 16:15:00
prion
prion
Design/Logic Flaw
2020-01-29 16:15:00
nessus
nessus
freebsd
freebsd
jenkins -- multiple vulnerabilities
2020-01-29 00:00:00