An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system access to obtain GitHub credentials.
References
Link | Resource |
---|---|
https://jenkins.io/security/advisory/2018-03-26/#SECURITY-261 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:21:59
Updated: 2022-10-03T16:21:59
Reserved: 2022-10-03T00:00:00
Link: CVE-2018-1000142
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-04-05T13:29:00.213
Modified: 2018-05-15T15:39:00.937
Link: CVE-2018-1000142
JSON object: View
Redhat Information
No data.
CWE