3 matches found
CVE-2019-10420
Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-10420
Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-10420
The CVE-2019-10420 affects the Jenkins Assembla Plugin, which stores the Assembla password unencrypted in the plugin’s global configuration file (jenkins.plugin.assembla.AssemblaProjectProperty.xml) on the Jenkins controller. This allows anyone with access to the Jenkins master/file system to vie...