Vulnerabilities (CVE)

Filtered by vendor Jenkins Subscribe

Filtered by product Tracetronic Ecu-test

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-21612	1 Jenkins	1 Tracetronic Ecu-test	2021-01-19	2.1 LOW	5.5 MEDIUM
Jenkins TraceTronic ECU-TEST Plugin 2.23.1 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.
CVE-2018-1999026	1 Jenkins	1 Tracetronic Ecu-test	2018-10-04	4.0 MEDIUM	6.5 MEDIUM
A server-side request forgery vulnerability exists in Jenkins TraceTronic ECU-TEST Plugin 2.3 and earlier in ATXPublisher.java that allows attackers to have Jenkins send HTTP requests to an attacker-specified host.