← voltar
CVE-2020-2150

CVE-2020-2150

EPSS 0.6%
Jenkins Sonar Quality Gates Plugin 1.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.
Produtos afetados
Jenkins project · Jenkins Sonar Quality Gates Plugin

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://jenkins.io/security/advisory/2020-03-09/#SECURITY-1523http://www.openwall.com/lists/oss-security/2020/03/09/1