Vulnerabilities > Jenkins > Lambdatest Automation > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-46652 Missing Authorization vulnerability in Jenkins Lambdatest-Automation
A missing permission check in Jenkins lambdatest-automation Plugin 1.20.9 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of LAMBDATEST credentials stored in Jenkins.
network
low complexity
jenkins CWE-862
4.3
2023-10-25 CVE-2023-46653 Cleartext Storage of Sensitive Information vulnerability in Jenkins Lambdatest-Automation
Jenkins lambdatest-automation Plugin 1.20.10 and earlier logs LAMBDATEST Credentials access token at the INFO level, potentially resulting in its exposure.
network
low complexity
jenkins CWE-312
6.5