CVE-2020-2143

Jenkins Logstash Plugin 2.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.
Configurations

Configuration 1

cpe:2.3:a:jenkins:logstash:*:*:*:*:*:jenkins:*:*

Information

Published : 2020-03-09 04:15

Updated : 2020-03-09 06:37


NVD link : CVE-2020-2143

Mitre link : CVE-2020-2143

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information