CVE-2020-2209 is a vulnerability in Jenkins Testcomplete Support
Published on July 2, 2020

Jenkins TestComplete support Plugin 2.4.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system.

NVD

Products Associated with CVE-2020-2209

Want to know whenever a new CVE is published for Jenkins Testcomplete Support? stack.watch will email you.

Jenkins Testcomplete Support

Affected Versions

Jenkins project Jenkins TestComplete support Plugin:

Version unspecified, <= 2.4.1 is affected.
Version next of 2.4.1 and below unspecified is unknown.

Exploit Probability

EPSS

0.03%

Percentile

8.59%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-2209 is a vulnerability in Jenkins Testcomplete SupportPublished on July 2, 2020

Products Associated with CVE-2020-2209

Affected Versions

Exploit Probability

CVE-2020-2209 is a vulnerability in Jenkins Testcomplete Support
Published on July 2, 2020