Lucene search
MitreCVELIST:CVE-2018-1000191HistoryJun 05, 2018 - 8:00 p.m.
CVE-2018-1000191
2018-06-0520:00:00
mitre
www.cve.org
1
jenkins
black duck detect plugin
sensitive information
EPSS
0.001
Percentile
28.4%
A exposure of sensitive information vulnerability exists in Jenkins Black Duck Detect Plugin 1.4.0 and older in DetectPostBuildStepDescriptor.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
Related
github
github
Jenkins Black Duck Detect Plugin information exposure vulnerability
2022-05-14 01:09:55
prion
prion
Design/Logic Flaw
2018-06-05 20:29:00
nvd
nvd
CVE-2018-1000191
2018-06-05 20:29:00
osv
osv
Jenkins Black Duck Detect Plugin information exposure vulnerability
2022-05-14 01:09:55
CVE-2018-1000191
2018-06-05 20:29:00
cve
cve
CVE-2018-1000191
2018-06-05 20:29:00