CVE-2022-41247 – Jenkins BigPanda Notifier Plugin 1.4.0 and earlier stores the BigPanda API key unencrypted …

21 September 2022

Vuln ID: CVE-2022-41247

Published: 2022-09-21 16:15:11Z

Description: Jenkins BigPanda Notifier Plugin 1.4.0 and earlier stores the BigPanda API key unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.

Source: NVD.NIST.GOV

Date:

21 September 2022

Categorie(s):

NVD

Tag(s):

NVD

Shouldn’t Teams, Zoom, Slack all interoperate securely for the Feds? Wyden is asking24 April 2024
The evolution from BEC to BCC24 April 2024
US indicts botnet operator24 April 2024
Dark web inundated by cheap ransomware tools24 April 2024
Ukrainian documents laced with old malware exposed24 April 2024