Vulnerabilities > Jenkins > Datadog
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-07-12 | CVE-2023-37944 | Missing Authorization vulnerability in Jenkins Datadog A missing permission check in Jenkins Datadog Plugin 5.4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 6.5 |
2017-10-05 | CVE-2017-1000114 | Information Exposure vulnerability in Jenkins Datadog The Datadog Plugin stores an API key to access the Datadog service in the global Jenkins configuration. | 4.3 |