4 matches found
CVE-2021-21614
Jenkins Bumblebee HP ALM Plugin 4.1.5 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system...
CVE-2021-21614
Jenkins Bumblebee HP ALM Plugin 4.1.5 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system...
Cloudbees Jenkins 信息泄露漏洞
Cloudbees Jenkins Hudson Labs is the United States CloudBees Cloudbees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . Bumblebee HP ALM Plugin is us...
PT-2019-11838 · Jenkins +1 · Jenkins Bumblebee Hp Alm Plugin +2
Name of the Vulnerable Software and Affected Versions: Jenkins Bumblebee HP ALM Plugin versions 4.1.3 and earlier Description: The issue concerns the Jenkins Bumblebee HP ALM Plugin unconditionally disabling SSL/TLS and hostname verification for connections to HP ALM. This means that the plugin d...