CVE-2020-2251
CVE-2020-2251
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
01 Sep 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Jenkins SoapUI Pro Functional Testing Plugin 1.5 and earlier transmits project passwords in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure.
Affected products
Jenkins project · Jenkins SoapUI Pro Functional Testing Plugin