Skip to main content

Git Changelog

1 CVEs product

Monthly

CVE-2019-10414 Maven MEDIUM PATCH This Month

Jenkins Git Changelog Plugin 2.17 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Git Changelog
NVD
CVSS 3.1
6.5
EPSS
1.0%
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Jenkins Git Changelog Plugin 2.17 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Git Changelog
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy