CVE-2020-2232
N/A
N/A
Summary
Jenkins Email Extension Plugin 2.72 and 2.73 transmits and displays the SMTP password in plain text as part of the global Jenkins configuration form, potentially resulting in its exposure.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Jenkins project | Jenkins Email Extension Plugin | 2.72 < unspecified | affected |
| Jenkins project | Jenkins Email Extension Plugin | unspecified <= 2.73 | affected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://jenkins.io/security/advisory/2020-08-12/#SECURITY-1975
- http://www.openwall.com/lists/oss-security/2020/08/12/4
References
- https://jenkins.io/security/advisory/2020-08-12/#SECURITY-1975
- http://www.openwall.com/lists/oss-security/2020/08/12/4
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.