Description
Jenkins Repository Connector Plugin 1.2.6 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-2369 | Jenkins Repository Connector Plugin 1.2.6 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure. |
Github GHSA |
GHSA-4fjc-fwj2-7xfg | Credentials transmitted in plain text by Repository Connector Plugin |
References
History
No history.
Status: PUBLISHED
Assigner: jenkins
Published:
Updated: 2024-08-04T07:01:40.631Z
Reserved: 2019-12-05T00:00:00.000Z
Link: CVE-2020-2149
No data.
Status : Modified
Published: 2020-03-09T16:15:14.017
Modified: 2026-06-17T03:11:51.283
Link: CVE-2020-2149
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-319
Cleartext Transmission of Sensitive Information
EUVD
Github GHSA