26 matches found
Design/Logic Flaw
Jenkins Amazon SNS Build Notifier Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-1003063
Jenkins Amazon SNS Build Notifier Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-1003063
Jenkins Amazon SNS Build Notifier Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-1003063
Jenkins Amazon SNS Build Notifier Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-1003063
CVE-2019-1003063 affects the Jenkins Amazon SNS Build Notifier Plugin. The vulnerability arises because the plugin stores credentials unencrypted in the global configuration file on the Jenkins master, specifically in the org.jenkinsci.plugins.snsnotify.AmazonSNSNotifier.xml, which can be viewed ...
PT-2019-11353 · Jenkins · Jenkins Amazon Sns Build Notifier Plugin
Name of the Vulnerable Software and Affected Versions: Jenkins Amazon SNS Build Notifier Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted manner within the global configuration file on the Jenkins master or controller. Specificall...