Jenkins SourceGear Vault Plugin Cleartext Transmission of Sensitive Information Vulnerability
Jenkins SourceGear Vault Plugin suffers from information disclosure vulnerability.
The information has been provided by the Vendor.
The original article can be found at http://www.openwall.com/lists/oss-security/2019/10/01/2
|Jenkins SourceGear Vault Plugin transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure.|
Jenkins SourceGear Vault Plugin