Lucene search
K

29 matches found

Positive Technologies
Positive Technologies
added 2022/06/22 12:0 a.m.4 views

PT-2022-22077 · Jenkins · Jenkins Beaker Builder Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Beaker builder Plugin versions 1.10 and earlier Description: A cross-site request forgery CSRF issue allows attackers to connect to an attacker-specified URL. This can be exploited by attackers to perform unauthorized actions...

6.5CVSS6.2AI score0.00468EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2022/05/24 4:55 p.m.26 views

Jenkins Beaker Builder Plugin has Insufficiently Protected Credentials

Beaker builder Plugin stored the Beaker password unencrypted on the Jenkins controller. This password could be viewed by users with access to the Jenkins controller file system. Beaker builder Plugin now stores these credentials encrypted...

5.5CVSS4AI score0.00291EPSS
Exploits0References5Affected Software1
CNVD
CNVD
added 2019/09/17 12:0 a.m.5 views

CloudBees Jenkins Beaker Builder Information Disclosure Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Dependency Graph Viewer Plugin is used in...

5.5CVSS6.3AI score0.00291EPSS
Exploits0References1
NVD
NVD
added 2019/09/12 2:15 p.m.32 views

CVE-2019-10398

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

5.5CVSS5.4AI score0.00291EPSS
Exploits0References2
OSV
OSV
added 2019/09/12 2:15 p.m.3 views

CVE-2019-10398

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

5.5CVSS5.8AI score0.00291EPSS
Exploits0References2
Prion
Prion
added 2019/09/12 2:15 p.m.24 views

Design/Logic Flaw

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

2.1CVSS5.3AI score0.00291EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/09/12 1:55 p.m.30 views

CVE-2019-10398

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

5.4AI score0.00291EPSS
Exploits0References2
CVE
CVE
added 2019/09/12 1:55 p.m.83 views

CVE-2019-10398

The CVE-2019-10398 entry concerns Jenkins Beaker Builder Plugin (versions ≤ 1.9). The vulnerability arises from credentials being stored unencrypted in the plugin’s global configuration file on the Jenkins master, enabling users with file-system access to view them. Impact is credential disclosur...

5.5CVSS5.3AI score0.00291EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/09/12 12:0 a.m.6 views

PT-2019-11792 · Jenkins · Jenkins Beaker Builder Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Beaker Builder Plugin versions 1.9 and earlier Description: The issue concerns the storage of credentials in the Jenkins Beaker Builder Plugin. Specifically, the plugin stored credentials unencrypted in its global configuration file o...

5.5CVSS5.3AI score0.00291EPSS
Exploits0References5
Rows per page
Query Builder