Описание
Plaintext Storage of a Password in Jenkins Eagle Tester Plugin
Jenkins Eagle Tester Plugin 1.0.9 and earlier stores a password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system.
Пакеты
Наименование
com.mobileenerlytics.eagle.tester:eagle-tester
maven
Затронутые версииВерсия исправления
<= 1.0.9
Отсутствует
Связанные уязвимости
CVSS3: 6.5
nvd
почти 6 лет назад
Jenkins Eagle Tester Plugin 1.0.9 and earlier stores a password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system.