CVE-2020-2155

Cleartext Transmission of Sensitive Information in maven/org.jenkins-ci.plugins/openshift-deployer

Identifiers

GHSA-2rrx-q65f-8945, CVE-2020-2155

Package Slug

maven/org.jenkins-ci.plugins/openshift-deployer

Vulnerability

Cleartext Transmission of Sensitive Information

Description

Jenkins OpenShift Deployer Plugin 1.2.0 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.

Affected Versions

All versions up to 1.2.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-01-15

source