Maven package
org.jenkins-ci.plugins/accurev
pkg:maven/org.jenkins-ci.plugins/accurev
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-1999028 | Hig | 8.8 | < 0.7.17 | 0.7.17 | Aug 1, 2018 | An exposure of sensitive information vulnerability exists in Jenkins Accurev Plugin 0.7.16 and earlier in AccurevSCM.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins. |
- affected < 0.7.17fixed 0.7.17
An exposure of sensitive information vulnerability exists in Jenkins Accurev Plugin 0.7.16 and earlier in AccurevSCM.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins.