Описание
Cleartext Storage of Sensitive Information in Jenkins Build Notifications Plugin
Jenkins Build Notifications Plugin 1.5.0 and earlier transmits tokens in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure.
Пакеты
Наименование
tools.devnull:build-notifications
maven
Затронутые версииВерсия исправления
<= 1.5.0
Отсутствует
Связанные уязвимости
CVSS3: 4.3
nvd
больше 3 лет назад
Jenkins Build Notifications Plugin 1.5.0 and earlier transmits tokens in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure.