Lucene search
K

255 matches found

Cvelist
Cvelist
added 2019/09/25 3:5 p.m.30 views

CVE-2019-10414

Jenkins Git Changelog Plugin 2.17 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access to the master file system...

6.4AI score0.01038EPSS
Exploits0References2
CVE
CVE
added 2019/09/25 3:5 p.m.51 views

CVE-2019-10419

CVE-2019-10419 affects Jenkins via the vFabric Application Director Plugin, where credentials are stored unencrypted in the plugin’s global configuration file on the Jenkins controller. The underlying issue is unencrypted credential storage in the Application Director Plugin’s configuration file ...

5.5CVSS5.4AI score0.00321EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/09/25 3:5 p.m.32 views

CVE-2019-10420

Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.4AI score0.00348EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/09/25 12:0 a.m.9 views

PT-2019-11816 · Jenkins · Jenkins Call Remote Job Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Call Remote Job Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted manner within job config.xml files on the Jenkins master or controller. This allows users with Extende...

6.5CVSS6.3AI score0.01001EPSS
Exploits0References4
NVD
NVD
added 2019/09/12 2:15 p.m.31 views

CVE-2019-10398

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

5.5CVSS5.4AI score0.00291EPSS
Exploits0References2
Prion
Prion
added 2019/09/12 2:15 p.m.23 views

Design/Logic Flaw

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

2.1CVSS5.3AI score0.00291EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/08/07 3:15 p.m.12 views

CVE-2019-10378

Jenkins TestLink Plugin 3.16 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.3CVSS6.6AI score
Exploits0References3
NVD
NVD
added 2019/08/07 3:15 p.m.25 views

CVE-2019-10378

Jenkins TestLink Plugin 3.16 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

5.3CVSS5.2AI score0.00502EPSS
Exploits0References3
OSV
OSV
added 2019/08/07 3:15 p.m.13 views

CVE-2019-10379

Jenkins Google Cloud Messaging Notification Plugin 1.0 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

6.5CVSS6.7AI score
Exploits0References2
Prion
Prion
added 2019/08/07 3:15 p.m.17 views

Design/Logic Flaw

Jenkins TestLink Plugin 3.16 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

2.1CVSS5.2AI score0.00502EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2019/08/07 2:20 p.m.23 views

CVE-2019-10379

Jenkins Google Cloud Messaging Notification Plugin 1.0 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

6.4AI score0.0038EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/08/07 2:20 p.m.35 views

CVE-2019-10385

Jenkins eggPlant Plugin 2.2 and earlier stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

6.4AI score0.01482EPSS
Exploits0References3
NVD
NVD
added 2019/07/31 1:15 p.m.20 views

CVE-2019-10366

Jenkins Skytap Cloud CI Plugin 2.06 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access to the master file system...

6.5CVSS6.4AI score0.01482EPSS
Exploits0References3
OSV
OSV
added 2019/07/31 1:15 p.m.4 views

CVE-2019-10361

Jenkins Maven Release Plugin 0.14.0 and earlier stored credentials unencrypted on the Jenkins master where they could be viewed by users with access to the master file system...

5.5CVSS5.8AI score0.00471EPSS
Exploits0References3
NVD
NVD
added 2019/07/31 1:15 p.m.33 views

CVE-2019-10361

Jenkins Maven Release Plugin 0.14.0 and earlier stored credentials unencrypted on the Jenkins master where they could be viewed by users with access to the master file system...

5.5CVSS5.4AI score0.00471EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/07/31 12:45 p.m.36 views

CVE-2019-10361

Jenkins Maven Release Plugin 0.14.0 and earlier stored credentials unencrypted on the Jenkins master where they could be viewed by users with access to the master file system...

5.4AI score0.00471EPSS
Exploits0References3
NVD
NVD
added 2019/07/11 2:15 p.m.25 views

CVE-2019-10350

Jenkins Port Allocator Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

8.8CVSS8.6AI score0.01668EPSS
Exploits0References4
NVD
NVD
added 2019/07/11 2:15 p.m.33 views

CVE-2019-10351

Jenkins Caliper CI Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

8.8CVSS8.7AI score0.01632EPSS
Exploits0References4
OSV
OSV
added 2019/07/11 2:15 p.m.15 views

CVE-2019-10350

Jenkins Port Allocator Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

8.8CVSS6.7AI score
Exploits0References4
NVD
NVD
added 2019/07/11 2:15 p.m.18 views

CVE-2019-10347

Jenkins Mashup Portlets Plugin stored credentials unencrypted on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS8.6AI score0.01832EPSS
Exploits0References3
Rows per page
Query Builder