Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:16 a.m.14 views

CVE-2019-16566

A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.5AI score0.00798EPSS
Exploits0References1
NVD
NVD
added 2019/12/17 3:15 p.m.39 views

CVE-2019-16566

A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.4AI score0.00798EPSS
Exploits0References2
CVE
CVE
added 2019/12/17 2:40 p.m.61 views

CVE-2019-16566

CVE-2019-16566 affects Jenkins Team Concert Plugin versions 1.3.0 and earlier. The root cause is a missing permission check in a form/URL handling path that allows attackers with Overall/Read access to initiate connections to an attacker-specified URL using attacker-specified credentials IDs, ena...

6.5CVSS6.3AI score0.00798EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/12/17 2:40 p.m.35 views

CVE-2019-16566

A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.3AI score0.00798EPSS
Exploits0References2
Rows per page
Query Builder