Home

CVE-2020-2145

Description

Jenkins Zephyr Enterprise Test Management Plugin 1.9.1 and earlier stores its Zephyr password in plain text on the Jenkins master file system.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.011

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-2145 are fixed in Jenkins - zephyr-enterprise-test-management 1.10Windows
Vulnerabilities CVE-2020-2145 are fixed in Jenkins - zephyr-enterprise-test-management for Linux 1.10Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234