Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/22 8:16 a.m.14 views

CVE-2019-16566

A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.5AI score0.00798EPSS
Exploits0References1
nvd
nvd
added 2019/12/17 3:15 p.m.39 views

CVE-2019-16566

A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.4AI score0.00798EPSS
Exploits0References2
cve
cve
added 2019/12/17 2:40 p.m.60 views

CVE-2019-16566

CVE-2019-16566 affects Jenkins Team Concert Plugin versions 1.3.0 and earlier. The root cause is a missing permission check in a form/URL handling path that allows attackers with Overall/Read access to initiate connections to an attacker-specified URL using attacker-specified credentials IDs, ena...

6.5CVSS6.3AI score0.00798EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2019/12/17 2:40 p.m.34 views

CVE-2019-16566

A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.3AI score0.00798EPSS
Exploits0References2
Rows per page
Query Builder