Xebialabs Xl Deploy Security Vulnerabilities and Issues — Xebialabs Xl Deploy CVE List

Lucene search

JenkinsXebialabs Xl Deploy

2 matches found

CVE•added 2021/06/10 3:15 p.m.•70 views

CVE-2021-21662

A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Overall/Read permission to enumerate credentials ID of credentials stored in Jenkins.

4.3CVSS4.4AI score0.00119EPSS

CVE•added 2021/06/10 3:15 p.m.•65 views

CVE-2021-21663

A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 7.5.8 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkin...

4.3CVSS4.4AI score0.00117EPSS