GHSA-xv58-gp43-6m76, CVE-2020-2145
maven/org.jenkins-ci.plugins/zephyr-enterprise-test-management
Insufficiently Protected Credentials
Jenkins Zephyr Enterprise Test Management Plugin 1.9.1 and earlier stores its Zephyr password in plain text on the Jenkins master file system.
All versions before 1.10
Upgrade to version 1.10 or above.
2023-01-15
source |