Skip to main content

Violation Comments To Gitlab

2 CVEs product

Monthly

CVE-2019-10416 Maven MEDIUM PATCH This Month

Jenkins Violation Comments to GitLab Plugin 2.28 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Gitlab Violation Comments To Gitlab
NVD
CVSS 3.1
6.5
EPSS
1.1%
CVE-2019-10415 Maven MEDIUM PATCH This Month

Jenkins Violation Comments to GitLab Plugin 2.28 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Gitlab Violation Comments To Gitlab
NVD
CVSS 3.1
6.5
EPSS
1.1%
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Jenkins Violation Comments to GitLab Plugin 2.28 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Gitlab +1
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Jenkins Violation Comments to GitLab Plugin 2.28 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Gitlab +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy