533 matches found
Information disclosure
Jenkins Upload to pgyer Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
Design/Logic Flaw
Jenkins WebSphere Deployer Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
Design/Logic Flaw
Jenkins StarTeam Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
Design/Logic Flaw
Jenkins TestFairy Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-1003054
Jenkins Jira Issue Updater Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-1003056
Jenkins WebSphere Deployer Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10294
CVE-2019-10294 concerns the Jenkins Kmap Plugin, where credentials are stored unencrypted in job config.xml files on the Jenkins master. The underlying issue enables exposure to users with Extended Read permission or with access to the master filesystem. The initial entry and multiple connected a...
CVE-2019-10294
Jenkins Kmap Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10294
Jenkins Kmap Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10295
Jenkins crittercism-dsym Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10295
The CVE refers to the Jenkins crittercism-dsym Plugin storing credentials unencrypted in job config.xml on the Jenkins master/controller. The root cause is credential data kept in plaintext within config.xml, making it viewable by users with Extended Read permission or with access to the master/c...
CVE-2019-10295
Jenkins crittercism-dsym Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10283
Jenkins mabl Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10284
CVE-2019-10284 affects the Jenkins Diawi Upload Plugin. The vulnerability is the storage of credentials in plain text within job config.xml files on the Jenkins master/controller, enabling exposure to users with Extended Read permissions or with access to the master filesystem. The connected docu...
CVE-2019-10286
Jenkins DeployHub Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10282
Jenkins Klaros-Testmanagement Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-1003097
CVE-2019-1003097 affects the Jenkins Crowd Integration Plugin, where credentials are stored unencrypted in the global config.xml on the Jenkins master. This allows users with access to the master file system to view sensitive data. The available connected documents confirm the affected component ...
CVE-2019-10283
Jenkins mabl Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-1003088
The CVE-2019-1003088 entry concerns Jenkins Fabric Beta Publisher Plugin. The provided documents indicate that the plugin stores credentials unencrypted in job config.xml files on the Jenkins master, allowing credential access by users with Extended Read permission or anyone with access to the ma...
CVE-2019-1003097
Jenkins Crowd Integration Plugin stores credentials unencrypted in the global config.xml configuration file on the Jenkins master where they can be viewed by users with access to the master file system...