Lucene search

Veracode Vulnerability DatabaseVERACODE:14774

HistoryMay 02, 2019 - 4:55 a.m.

Information Disclosure

2019-05-0204:55:59

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.0004 Low

EPSS

Percentile

5.1%

JSON

jenkins is vulnerable to information disclosure. The vulnerability exists as jenkins stores cendentials using base64 encoding.

CPENameOperatorVersion
jenkins-plugin-openshifteq0.6.19__0.el6op
jenkins-plugin-openshifteq0.6.16__0.el6op
jenkins-plugin-openshifteq0.6.28__1.el6op
jenkins-plugin-openshifteq0.6.5__0.el6op
jenkins-plugin-openshifteq0.6.25__1.el6op
jenkins-plugin-openshifteq0.6.37.1__0.el6op
jenkins-plugin-openshifteq0.6.20__0.el6op
openshift-origin-cartridge-jenkinseq1.20.3.4__1.el6op
openshift-origin-cartridge-jenkinseq1.20.3.3__1.el6op
openshift-origin-cartridge-jenkinseq1.9.8__1.el6op

Name	Operator	Version
jenkins-plugin-openshift	eq	0.6.19__0.el6op
jenkins-plugin-openshift	eq	0.6.16__0.el6op
jenkins-plugin-openshift	eq	0.6.28__1.el6op
jenkins-plugin-openshift	eq	0.6.5__0.el6op
jenkins-plugin-openshift	eq	0.6.25__1.el6op
jenkins-plugin-openshift	eq	0.6.37.1__0.el6op
jenkins-plugin-openshift	eq	0.6.20__0.el6op
openshift-origin-cartridge-jenkins	eq	1.20.3.4__1.el6op
openshift-origin-cartridge-jenkins	eq	1.20.3.3__1.el6op
openshift-origin-cartridge-jenkins	eq	1.9.8__1.el6op

Rows per page:

1-10 of 341

References

access.redhat.com/errata/RHBA-2014:1630

access.redhat.com/security/cve/CVE-2013-5573

access.redhat.com/security/cve/CVE-2013-6372

access.redhat.com/security/cve/CVE-2013-7330

access.redhat.com/security/cve/CVE-2014-2059

access.redhat.com/security/cve/CVE-2014-2060

access.redhat.com/security/cve/CVE-2014-2061

access.redhat.com/security/cve/CVE-2014-2062

access.redhat.com/security/cve/CVE-2014-2063

access.redhat.com/security/cve/CVE-2014-2064

access.redhat.com/security/cve/CVE-2014-2065

access.redhat.com/security/cve/CVE-2014-2066

access.redhat.com/security/cve/CVE-2014-2067

access.redhat.com/security/cve/CVE-2014-2068

access.redhat.com/security/cve/CVE-2014-3661

access.redhat.com/security/cve/CVE-2014-3662

access.redhat.com/security/cve/CVE-2014-3663

access.redhat.com/security/cve/CVE-2014-3664

access.redhat.com/security/cve/CVE-2014-3665

access.redhat.com/security/cve/CVE-2014-3666

access.redhat.com/security/cve/CVE-2014-3667

access.redhat.com/security/cve/CVE-2014-3678

access.redhat.com/security/cve/CVE-2014-3681

bugzilla.redhat.com/show_bug.cgi?id=1032391

bugzilla.redhat.com/show_bug.cgi?id=1127667

github.com/jenkinsci/subversion-plugin/commit/7d4562d6f7e40de04bbe29577b51c79f07d05ba6

rhn.redhat.com/errata/RHBA-2014-1630.html

wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-11-20

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for VERACODE:14774