CVE-2019-10426

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-10426

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-10426.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-10426

Aliases

GHSA-6pqm-pp65-mc26

Published

2019-09-25T16:15:11.993Z

Modified

2026-03-14T00:44:59.466368Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

Jenkins Gem Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.

References

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-10426.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.0"
            }
        ]
    }
]