Jenkins Testcomplete Support
By the Year
In 2024 there have been 0 vulnerabilities in Jenkins Testcomplete Support . Last year Testcomplete Support had 2 security vulnerabilities published. Right now, Testcomplete Support is on track to have less security vulnerabilities in 2024 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 2 | 7.60 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 1 | 4.30 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Testcomplete Support vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Testcomplete Support Security Vulnerabilities
Jenkins TestComplete support Plugin 2.8.1 and earlier does not escape the TestComplete project name
CVE-2023-33002
5.4 - Medium
- May 16, 2023
Jenkins TestComplete support Plugin 2.8.1 and earlier does not escape the TestComplete project name, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
XSS
Jenkins TestComplete support Plugin 2.8.1 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CVE-2023-24443
9.8 - Critical
- January 26, 2023
Jenkins TestComplete support Plugin 2.8.1 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
XXE
Jenkins TestComplete support Plugin 2.4.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it
CVE-2020-2209
4.3 - Medium
- July 02, 2020
Jenkins TestComplete support Plugin 2.4.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system.
Insufficiently Protected Credentials
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Testcomplete Support or by Jenkins? Click the Watch button to subscribe.