Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5
CVE-2020-2145
- EPSS 0.01%
- Published 09.03.2020 16:15:13
- Last modified 21.11.2024 05:24:47
Jenkins Zephyr Enterprise Test Management Plugin 1.9.1 and earlier stores its Zephyr password in plain text on the Jenkins master file system.
6.5
CVE-2019-1003084
- EPSS 0.16%
- Published 04.04.2019 16:29:01
- Last modified 21.11.2024 04:17:52
A cross-site request forgery vulnerability in Jenkins Zephyr Enterprise Test Management Plugin in the ZeeDescriptor#doTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server.
6.5
CVE-2019-1003085
- EPSS 0.08%
- Published 04.04.2019 16:29:01
- Last modified 21.11.2024 04:17:52
A missing permission check in Jenkins Zephyr Enterprise Test Management Plugin in the ZeeDescriptor#doTestConnection form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.
1