3 matches found
CVE-2020-2209
Jenkins TestComplete support Plugin 2.4.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2020-2209
Jenkins TestComplete support Plugin 2.4.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2020-2209
CVE-2020-2209 affects CloudBees Jenkins TestComplete support Plugin versions 2.4.1 and earlier. The issue stems from storing passwords unencrypted in job config.xml on the Jenkins master, allowing access by users with Extended Read permission or direct master filesystem access. Remediation per mu...