CVE-2019-10397
CVE-2019-10397
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
12 Sep 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Jenkins Aqua Security Serverless Scanner Plugin 1.0.4 and earlier transmitted configured passwords in plain text as part of job configuration forms, potentially resulting in their exposure.
Affected products
Jenkins project · Jenkins Aqua Security Serverless Scanner Plugin