CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-2210

Jenkins Stash Branch Parameter Plugin 0.3.0 and earlier transmits configured passwords in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.3%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.3

References

http://www.openwall.com/lists/oss-security/2020/07/02/7
https://jenkins.io/security/advisory/2020-07-02/#SECURITY-1656
http://www.openwall.com/lists/oss-security/2020/07/02/7
https://jenkins.io/security/advisory/2020-07-02/#SECURITY-1656

Products affected by CVE-2020-2210

Jenkins » Stash Branch Parameter » Version: 0.1.3

cpe:2.3:a:jenkins:stash_branch_parameter:0.1.3
Jenkins » Stash Branch Parameter » Version: 0.1.6

cpe:2.3:a:jenkins:stash_branch_parameter:0.1.6
Jenkins » Stash Branch Parameter » Version: 0.2.0

cpe:2.3:a:jenkins:stash_branch_parameter:0.2.0
Jenkins » Stash Branch Parameter » Version: 0.3.0

cpe:2.3:a:jenkins:stash_branch_parameter:0.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2210

Products

Pricing

Contact Us