CVE List

CVE-2020-2125

Moderate 4.3

Jenkins Debian Package Builder Plugin 1.6.11 and earlier stores a GPG passphrase unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system.

Published February 12, 2020.

Affected software

Jenkins Debian Package Builder

Reference links

Sign Up for Alerts