Description
Jenkins NeuVector Vulnerability Scanner Plugin 1.5 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-2173 | Jenkins NeuVector Vulnerability Scanner Plugin 1.5 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system. |
Github GHSA |
GHSA-3fpx-g9h3-hh8x | Jenkins NeuVector Vulnerability Scanner Plugin stored credentials in plain text |
References
History
No history.
Status: PUBLISHED
Assigner: jenkins
Published:
Updated: 2024-08-04T22:24:18.177Z
Reserved: 2019-03-29T00:00:00.000Z
Link: CVE-2019-10430
No data.
Status : Modified
Published: 2019-09-25T16:15:12.227
Modified: 2026-06-17T02:10:55.523
Link: CVE-2019-10430
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-312
Cleartext Storage of Sensitive Information
EUVD
Github GHSA