2 matches found
CVE-2019-1003071
The CVE refers to Jenkins OctopusDeploy Plugin where credentials are stored unencrypted in the plugin’s global configuration file on the Jenkins master (hudson.plugins.octopusdeploy.OctopusDeployPlugin.xml). This enables exposure to any user with access to the Jenkins controller/master file syste...
CVE-2019-1003071
Jenkins OctopusDeploy Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...