CVE-2019-10381
Improper Certificate Validation in maven/org.jenkins-ci.plugins/codefresh
Identifiers
GHSA-862j-cv9p-6hpf, CVE-2019-10381
Package Slug
maven/org.jenkins-ci.plugins/codefresh
Vulnerability
Improper Certificate Validation
Description
Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM.
Affected Versions
All versions up to 1.8
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-03-06
| source |