Jenkins Parasoft Environment Manager Plugin 2.14 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| com.parasoft:environment-manager(Maven) | 0 | 2.15 | N/A |
CVSS Metrics
