CVE-2020-2232

Jenkins Email Extension Plugin 2.72 and 2.73 transmits and displays the SMTP password in plain text as part of the global Jenkins configuration form, potentially resulting in its exposure.
References
Configurations

Configuration 1

cpe:2.3:a:jenkins:email_extension:2.72:*:*:*:*:jenkins:*:*
cpe:2.3:a:jenkins:email_extension:2.73:*:*:*:*:jenkins:*:*

Information

Published : 2020-08-12 02:15

Updated : 2020-08-13 07:48


NVD link : CVE-2020-2232

Mitre link : CVE-2020-2232

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information