Количество 2
Количество 2
CVE-2023-50772
около 2 лет назад
Jenkins Dingding JSON Pusher Plugin 2.0 and earlier stores access tokens unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system.
CVSS3: 4.3
EPSS: Низкий
GHSA-wjr6-v4c7-8cv6
около 2 лет назад
Tokens stored in plain text by Dingding JSON Pusher Plugin
CVSS3: 4.3
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-50772 Jenkins Dingding JSON Pusher Plugin 2.0 and earlier stores access tokens unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. | CVSS3: 4.3 | 0% Низкий | около 2 лет назад |
| GHSA-wjr6-v4c7-8cv6 Tokens stored in plain text by Dingding JSON Pusher Plugin | CVSS3: 4.3 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу
20