CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Instant-Messaging >> 1.17 Security Vulnerabilities

CVE-2022-28135

Jenkins instant-messaging Plugin 1.41 and earlier stores passwords for group chats unencrypted in the global configuration file of plugins based on Jenkins instant-messaging Plugin on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.

CVSS Score

6.5

EPSS Score

0.007

Published

2022-03-29

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Instant-Messaging >> 1.17 Security Vulnerabilities

Products

Pricing

Contact Us