Jenkins HP ALM Quality Center Plugin 1.6 and earlier stores a password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
HP
Jenkins
Information Disclosure
Hp Application Lifecycle Management Quality Center
NVD
CVSS 3.1
3.3
EPSS
0.3%
In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL pointer dereference. Rated low severity (CVSS 2.3), this vulnerability is low attack complexity.
Null Pointer Dereference
Denial Of Service
Qemu
Debian Linux
NVD
CVSS 3.1
2.3
EPSS
0.4%