Skip to main content

Soapui Pro Functional Testing

2 CVEs product

Monthly

CVE-2020-2251 Maven MEDIUM PATCH This Month

Jenkins SoapUI Pro Functional Testing Plugin 1.5 and earlier transmits project passwords in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Soapui Pro Functional Testing
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2020-2250 Maven MEDIUM PATCH This Month

Jenkins SoapUI Pro Functional Testing Plugin 1.3 and earlier stores project passwords unencrypted in job config.xml files on the Jenkins controller where they can be viewed by attackers with Extended. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Soapui Pro Functional Testing
NVD
CVSS 3.1
6.5
EPSS
0.6%
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

Jenkins SoapUI Pro Functional Testing Plugin 1.5 and earlier transmits project passwords in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Soapui Pro Functional Testing
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Jenkins SoapUI Pro Functional Testing Plugin 1.3 and earlier stores project passwords unencrypted in job config.xml files on the Jenkins controller where they can be viewed by attackers with Extended. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Soapui Pro Functional Testing
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy