CVE-2019-10363
CVE-2019-10363
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
31 Jul 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Jenkins Configuration as Code Plugin 1.24 and earlier did not reliably identify sensitive values expected to be exported in their encrypted form.
Affected products
Jenkins project · Jenkins Configuration as Code Plugin