3 matches found
CVE-2019-10280
CVE-2019-10280 affects the Jenkins Assembla Auth Plugin. The issue is that credentials are stored unencrypted in the global config.xml on the Jenkins master, allowing access to those credentials by users who can access the master filesystem. The connected documents confirm the vulnerable storage ...
CVE-2019-10280
Jenkins Assembla Auth Plugin stores credentials unencrypted in the global config.xml configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-10280
Jenkins Assembla Auth Plugin stores credentials unencrypted in the global config.xml configuration file on the Jenkins master where they can be viewed by users with access to the master file system...