CVE-2020-2209

Jenkins TestComplete support Plugin 2.4.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system.
Configurations

Configuration 1

cpe:2.3:a:jenkins:testcomplete_support:*:*:*:*:*:jenkins:*:*

Information

Published : 2020-07-02 03:15

Updated : 2020-07-09 01:15


NVD link : CVE-2020-2209

Mitre link : CVE-2020-2209

Products Affected
No products.
CWE