Low severityNVD Advisory· Published Nov 21, 2019· Updated Aug 5, 2024
CVE-2019-16545
CVE-2019-16545
Description
Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.plugins:qmetry-for-jira-test-managementMaven | < 1.14.0 | 1.14.0 |
Affected products
2- Range: 1.13 and earlier
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-793w-q2h5-8h5jghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-16545ghsaADVISORY
- www.openwall.com/lists/oss-security/2019/11/21/1ghsamailing-listx_refsource_MLISTWEB
- github.com/jenkinsci/qmetry-for-jira-test-management-plugin/commit/6711f566b72c099f10b1cecab406786ca998651dghsaWEB
- jenkins.io/security/advisory/2019-11-21/mitrex_refsource_CONFIRM
- jenkins.io/security/advisory/2019-11-21/ghsaWEB
News mentions
0No linked articles in our index yet.