Kwetsbaarheid CVE-2018-1000423

An Insufficiently Protected Credentials Vulnerability Exists In Jenkins Crowd 2 Integration Plugin 2.0.0 And Earlier In CrowdSecurityRealm.java, CrowdConfigurationService.java That Allows Attackers With Local File System Access To Obtain The Credentials Used To Connect To Crowd 2.

Algemeen

CVE
CVE-2018-1000423
Leverancier(s) betrokken
Omschrijving
An Insufficiently Protected Credentials Vulnerability Exists In Jenkins Crowd 2 Integration Plugin 2.0.0 And Earlier In CrowdSecurityRealm.java, CrowdConfigurationService.java That Allows Attackers With Local File System Access To Obtain The Credentials Used To Connect To Crowd 2.
Publicatie
Woensdag, 9 Januari 2019
Gewijzigd
Maandag, 14 Januari 2019 15:00
Ernst

Referenties

Modificatie geschiedenis

Geef hieronder je email adres op en word op de hoogte gehouden van aanpassingen aan deze CVE