Skip to main content

Bumblebee Hp Alm

2 CVEs product

Monthly

CVE-2021-21614 Maven MEDIUM PATCH This Month

Jenkins Bumblebee HP ALM Plugin 4.1.5 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Jenkins Information Disclosure HP Bumblebee Hp Alm
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-10444 Maven MEDIUM PATCH This Month

Jenkins Bumblebee HP ALM Plugin 4.1.3 and earlier unconditionally disabled SSL/TLS and hostname verification for connections to HP ALM. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

HP Jenkins Information Disclosure Bumblebee Hp Alm
NVD
CVSS 3.1
6.5
EPSS
0.8%
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Jenkins Bumblebee HP ALM Plugin 4.1.5 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Jenkins Information Disclosure HP +1
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Jenkins Bumblebee HP ALM Plugin 4.1.3 and earlier unconditionally disabled SSL/TLS and hostname verification for connections to HP ALM. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

HP Jenkins Information Disclosure +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy