Skip to main content

Testfairy

1 CVEs product

Monthly

CVE-2019-1003096 Maven MEDIUM PATCH This Month

Jenkins TestFairy Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Testfairy
NVD
CVSS 3.1
6.5
EPSS
1.7%
EPSS 2% CVSS 6.5
MEDIUM PATCH This Month

Jenkins TestFairy Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Testfairy
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy