CVE-2018-1000610

Posted on by admin

CVE-2018-1000610

A exposure of sensitive information vulnerability exists in Jenkins Configuration as Code Plugin 0.7-alpha and earlier in DataBoundConfigurator.java, Attribute.java, BaseConfigurator.java, ExtensionConfigurator.java that allows attackers with access to Jenkins log files to obtain the passwords configured using Configuration as Code Plugin.

Source: CVE-2018-1000610

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다