Skip to main content

Mattermost Notification

1 CVEs product

Monthly

CVE-2019-10459 Maven MEDIUM PATCH This Month

Jenkins Mattermost Notification Plugin 2.7.0 and earlier stored webhook URLs containing a secret token unencrypted in its global configuration file and job config.xml files on the Jenkins master. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Mattermost Jenkins Information Disclosure Mattermost Notification
NVD
CVSS 3.1
6.5
EPSS
0.9%
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Jenkins Mattermost Notification Plugin 2.7.0 and earlier stored webhook URLs containing a secret token unencrypted in its global configuration file and job config.xml files on the Jenkins master. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Mattermost Jenkins Information Disclosure +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy