CVE-2018-1000608

A exposure of sensitive information vulnerability exists in Jenkins z/OS Connector Plugin 1.2.6.1 and earlier in SCLMSCM.java that allows an attacker with local file system access or control of a Jenkins administrator's web browser (e.g. malicious extension) to retrieve the configured password.
References
Configurations

Configuration 1

cpe:2.3:a:jenkins:z/os_connector:*:*:*:*:*:jenkins:*:*

Information

Published : 2018-06-26 05:29

Updated : 2019-10-03 12:03


NVD link : CVE-2018-1000608

Mitre link : CVE-2018-1000608

Products Affected
No products.
CWE