Количество 2
Количество 2
CVE-2018-1000424
An insufficiently protected credentials vulnerability exists in Jenkins Artifactory Plugin 2.16.1 and earlier in ArtifactoryBuilder.java, CredentialsConfig.java that allows attackers with local file system access to obtain old credentials configured for the plugin before it integrated with Credentials Plugin.
GHSA-cvh8-9j4x-5v4j
Jenkins Artifactory Plugin stored old directly entered credentials unencrypted on disk
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-1000424 An insufficiently protected credentials vulnerability exists in Jenkins Artifactory Plugin 2.16.1 and earlier in ArtifactoryBuilder.java, CredentialsConfig.java that allows attackers with local file system access to obtain old credentials configured for the plugin before it integrated with Credentials Plugin. | CVSS3: 7.8 | 0% Низкий | около 7 лет назад |
| GHSA-cvh8-9j4x-5v4j Jenkins Artifactory Plugin stored old directly entered credentials unencrypted on disk | CVSS3: 7.8 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу