GHSA-5gmf-8gh2-hhfp, CVE-2017-1000245
maven/org.jenkins-ci.plugins/ssh
Insufficiently Protected Credentials
The SSH Plugin stores credentials which allow jobs to access remote servers via the SSH protocol. User passwords and passphrases for encrypted SSH keys are stored in plaintext in a configuration file.
All versions before 2.5
Upgrade to version 2.5 or above.
2022-11-23
source |