4 matches found
de.tsystems.mms.apm:performance-signature-viewer (>=2.5.8 <=2.5.8.1) potentially affected by CVE-2020-2239 via org.jenkins-ci.plugins:Parameterized-Remote-Trigger (=3.0.0)
org.jenkins-ci.plugins:Parameterized-Remote-Trigger MAVEN version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.jenkins-ci.plugins:Parameterized-Remote-Trigger and may be impacted: - de.tsystems.mms.apm:performance-signature-viewer =2.5.8,...
CVE-2020-2239
Jenkins Parameterized Remote Trigger Plugin 3.1.3 and earlier stores a secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...
CVE-2020-2239
The CVE-2020-2239 issue affects Jenkins Parameterized Remote Trigger Plugin up to version 3.1.3. The plugin stores a secret in plaintext in the controller’s global configuration file (org.jenkinsci.plugins.ParameterizedRemoteTrigger.RemoteBuildConfiguration.xml), exposing confidential data to any...
CVE-2020-2239
Jenkins Parameterized Remote Trigger Plugin 3.1.3 and earlier stores a secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...