Lucene search
K

32 matches found

CVE
CVE
added 2022/09/21 3:46 p.m.72 views

CVE-2022-41244

CVE-2022-41244 concerns Jenkins View26 Test-Reporting Plugin, versions 1.0.7 and earlier. The issue is that the plugin does not perform hostname validation when connecting to the configured View26 server, which could be abused in a man-in-the-middle attack to intercept connections. The provided c...

8.1CVSS7.9AI score0.00539EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/09/21 3:46 p.m.21 views

CVE-2022-41244

Jenkins View26 Test-Reporting Plugin 1.0.7 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections...

8.2AI score0.00539EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/09/21 12:0 a.m.3 views

Jenkins View26 Test-Reporting Plugin 信任管理问题漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

8.1CVSS7.7AI score0.00539EPSS
Exploits0References3
OSV
OSV
added 2022/05/24 4:58 p.m.18 views

GHSA-5RC5-4C5C-4CWX Jenkins View26 Test-Reporting Plugin stores access token in plain text

Jenkins View26 Test-Reporting Plugin stores an access token unencrypted in job config.xml files on the Jenkins controller. This token can be viewed by users with Extended Read permission or access to the Jenkins controller file system. As of publication of this advisory there is no fix...

4.3CVSS4.5AI score0.00469EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/05/24 4:58 p.m.23 views

Jenkins View26 Test-Reporting Plugin stores access token in plain text

Jenkins View26 Test-Reporting Plugin stores an access token unencrypted in job config.xml files on the Jenkins controller. This token can be viewed by users with Extended Read permission or access to the Jenkins controller file system. As of publication of this advisory there is no fix...

4.3CVSS6.6AI score0.00469EPSS
Exploits0References3Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2019/10/30 12:0 a.m.18 views

(0Day) Jenkins View26 Test-Reporting Cleartext Storage of Credentials Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Jenkins View26 Test-Reporting. Authentication is required to exploit this vulnerability. The specific flaw exists within the View26 Test-Reporting plugin. The issue results from storing...

3.3CVSS2AI score
Exploits0
CNVD
CNVD
added 2019/10/23 12:0 a.m.1 views

Unspecified Vulnerability in CloudBees Jenkins View26 Test-Reporting Plugin

CloudBees Jenkins Hudson Labs is a set of U.S. CloudBees company based on Java development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing project and some timed tasks . View26 Test-Reporting Plugin is used in one of the...

4.3CVSS6.8AI score0.00469EPSS
Exploits0References1
NVD
NVD
added 2019/10/16 2:15 p.m.25 views

CVE-2019-10452

Jenkins View26 Test-Reporting Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4.3CVSS4.6AI score0.00469EPSS
Exploits0References1
Prion
Prion
added 2019/10/16 2:15 p.m.14 views

Design/Logic Flaw

Jenkins View26 Test-Reporting Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS4.5AI score0.00469EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/10/16 1:0 p.m.28 views

CVE-2019-10452

Jenkins View26 Test-Reporting Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4.6AI score0.00469EPSS
Exploits0References1
CVE
CVE
added 2019/10/16 1:0 p.m.54 views

CVE-2019-10452

CVE-2019-10452 affects the Jenkins View26 Test-Reporting Plugin, where credentials are stored unencrypted in job config.xml on the Jenkins controller/master. This plaintext storage can be read by users with Extended Read permission or with access to the master/controller filesystem, increasing ri...

4.3CVSS4.5AI score0.00469EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/10/16 12:0 a.m.5 views

PT-2019-11846 · Jenkins · Jenkins View26 Test-Reporting Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins View26 Test-Reporting Plugin affected versions not specified Description: The issue concerns the storage of sensitive information in an unencrypted manner. Specifically, the Jenkins View26 Test-Reporting Plugin stores credentials and ...

4.3CVSS4.3AI score0.00469EPSS
Exploits0References3
Rows per page
Query Builder