CVE-2019-10294 is a vulnerability in Jenkins Kmap
Published on April 4, 2019

Jenkins Kmap Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.

NVD

Products Associated with CVE-2019-10294

Want to know whenever a new CVE is published for Jenkins Kmap? stack.watch will email you.

Jenkins Kmap

Affected Versions

Jenkins project Jenkins Kmap Plugin Version all versions as of 2019-04-03 is affected by CVE-2019-10294

Exploit Probability

EPSS

0.08%

Percentile

22.53%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-10294 is a vulnerability in Jenkins KmapPublished on April 4, 2019

Products Associated with CVE-2019-10294

Affected Versions

Exploit Probability

CVE-2019-10294 is a vulnerability in Jenkins Kmap
Published on April 4, 2019