Lucene search
GoogleOSV:GHSA-RWRX-HRF2-V577HistoryMay 13, 2022 - 1:15 a.m.
Jenkins Serena SRA Deploy Plugin stores credentials in plain text
2022-05-1301:15:02
Google
osv.dev
10
jenkins
serena sra deploy plugin
credentials
plain text
global configuration file
unencrypted
file system
software
Jenkins Serena SRA Deploy Plugin stores credentials unencrypted in its global configuration file com.urbancode.ds.jenkins.plugins.serenarapublisher.UrbanDeployPublisher.xml on the Jenkins controller. These credentials can be viewed by users with access to the Jenkins controller file system.
Related
prion
prion
Design/Logic Flaw
2019-04-04 16:29:00
alpinelinux
alpinelinux
CVE-2019-10296
2019-04-04 16:29:03
nvd
nvd
CVE-2019-10296
2019-04-04 16:29:03
cve
cve
CVE-2019-10296
2019-04-04 16:29:03
cvelist
cvelist
CVE-2019-10296
2019-04-04 15:38:50
github
github
Jenkins Serena SRA Deploy Plugin stores credentials in plain text
2022-05-13 01:15:02