CVE-2020-2153

Jenkins Backlog Plugin 2.4 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure.
References
Configurations

Configuration 1

cpe:2.3:a:jenkins:backlog:*:*:*:*:*:jenkins:*:*

Information

Published : 2020-03-09 04:15

Updated : 2020-03-11 06:41


NVD link : CVE-2020-2153

Mitre link : CVE-2020-2153

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information