EUVD-2011-0547

Malware in sbrugna...

GHSA-HX82-2GGV-VWM5 Jenkins vFabric Application Director Plugin Insufficiently Protected Credentials

vFabric Application Director Plugin stores the Application Director password unencrypted in its global configuration file jfullam.vfabric.jenkins.plugin.ApplicationDirectorPostBuildDeployer.xml on the Jenkins controller. This password can be viewed by users with access to the Jenkins controller...

Jenkins vFabric Application Director Plugin Insufficiently Protected Credentials

vFabric Application Director Plugin stores the Application Director password unencrypted in its global configuration file jfullam.vfabric.jenkins.plugin.ApplicationDirectorPostBuildDeployer.xml on the Jenkins controller. This password can be viewed by users with access to the Jenkins controller...

CVE-2019-10419

Jenkins vFabric Application Director Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

CVE-2019-10419

Jenkins vFabric Application Director Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

CVE-2019-10419

CVE-2019-10419 affects Jenkins via the vFabric Application Director Plugin, where credentials are stored unencrypted in the plugin’s global configuration file on the Jenkins controller. The underlying issue is unencrypted credential storage in the Application Director Plugin’s configuration file ...

VMSA-2013-0005:VMware vFabric Postgres security updates

VMSA-2013-0005 VMware vFabric Postgres security updates VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2013-0005 VMware Security Advisory Synopsis: VMware vFabric Postgres security updates VMware Security Advisory Issue date: 2013-04-04 VMware Security Advisory Updated on:...

VMware vFabric tc Server 2.x JMX Authentication Security Bypass Vulnerability

VMware vFabric tc Server is prone to a security bypass vulnerability. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

VMware vFabric tc Server JMX Authentication Security Bypass Vulnerability

The host is running VMware vFabric tc Server and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: secpodvmwarevfabrictcserversecuritybypassvuln.nasl 7052 2017-09-04 11:50:51Z teissa $ VMware vFabric tc Server JMX Authentication Security Bypass Vulnerability Authors: Soor...

CVE-2011-0527: VMware vFabric tc Server password obfuscation bypass

Severity: Important Versions Affected: 2.0.0.RELEASE to 2.0.5.SR01 2.1.0.RELEASE to 2.1.1.SR01 Description: tc Server allows users to store the passwords used for JMX authentication in an obfuscated form for organizations where storing passwords in plain text is not permitted. The JMX...

VMware vFabric tc Server weak encryption

Server accepts cleartext password even if it's not allowed for user...

CVE-2011-0527

VMware vFabric tc Server aka SpringSource tc Server 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords...

Design/Logic Flaw

VMware vFabric tc Server aka SpringSource tc Server 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords...

CVE-2011-0527

VMware vFabric tc Server aka SpringSource tc Server 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords...

CVE-2011-0527

This CVE affects VMware vFabric tc Server (SpringSource tc Server) 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE. The JMX authentication password handling allows use of both plain text and obfuscated passwords, enabling context-dependent attackers with read access to stored passwords ...