Filtered by vendor Jenkins Subscriptions
Filtered by product Github Pull Request Coverage Status Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-24442 1 Jenkins 1 Github Pull Request Coverage Status 2024-11-21 5.5 Medium
Jenkins GitHub Pull Request Coverage Status Plugin 2.2.0 and earlier stores the GitHub Personal Access Token, Sonar access token and Sonar password unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.