Описание
Jenkins SSH Plugin user passwords for encrypted SSH keys stored in plaintext
The SSH Plugin stores credentials which allow jobs to access remote servers via the SSH protocol. User passwords and passphrases for encrypted SSH keys are stored in plaintext in a configuration file.
Пакеты
Наименование
org.jvnet.hudson.plugins:ssh
maven
Затронутые версииВерсия исправления
<= 2.3
Отсутствует
Наименование
org.jenkins-ci.plugins:ssh
maven
Затронутые версииВерсия исправления
< 2.5
2.5
Связанные уязвимости
CVSS3: 9.8
nvd
больше 8 лет назад
The SSH Plugin stores credentials which allow jobs to access remote servers via the SSH protocol. User passwords and passphrases for encrypted SSH keys are stored in plaintext in a configuration file.