Количество 2
Количество 2
CVE-2023-30523
Jenkins Report Portal Plugin 0.5 and earlier stores ReportPortal access tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system.
GHSA-qgw9-vgrf-h723
Jenkins Report Portal Plugin allows users with Item/Extended Read permission to view tokens on Jenkins controller
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-30523 Jenkins Report Portal Plugin 0.5 and earlier stores ReportPortal access tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
| GHSA-qgw9-vgrf-h723 Jenkins Report Portal Plugin allows users with Item/Extended Read permission to view tokens on Jenkins controller | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
Уязвимостей на страницу