Jenkins TraceTronic ECU-TEST Plugin is vulnerable to information disclosure. Credentials are stored unencrypted in its global configuration file. Users with access to the Jenkins controller file system are able to access the confidential information.