Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2023-37944
- EPSS 0.1%
- Published 12.07.2023 16:15:13
- Last modified 21.11.2024 08:12:30
A missing permission check in Jenkins Datadog Plugin 5.4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentia...
4.3
CVE-2017-1000114
- EPSS 0.03%
- Published 05.10.2017 01:29:04
- Last modified 20.04.2025 01:37:25
The Datadog Plugin stores an API key to access the Datadog service in the global Jenkins configuration. While the API key is stored encrypted on disk, it was transmitted in plain text as part of the configuration form. This could result in exposure o...
1