Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2022-38665
- EPSS 0.47%
- Published 23.08.2022 17:15:15
- Last modified 21.11.2024 07:16:53
Jenkins CollabNet Plugins Plugin 2.0.8 and earlier stores a RabbitMQ password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system.
7.4
CVE-2018-1000605
- EPSS 0.04%
- Published 26.06.2018 17:29:00
- Last modified 21.11.2024 03:40:12
A man in the middle vulnerability exists in Jenkins CollabNet Plugin 2.0.4 and earlier in CollabNetApp.java, CollabNetPlugin.java, CNFormFieldValidator.java that allows attackers to impersonate any service that Jenkins connects to.
1