Vulnerabilities > Jenkins > Lambdatest Automation > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-25 | CVE-2023-46652 | Missing Authorization vulnerability in Jenkins Lambdatest-Automation A missing permission check in Jenkins lambdatest-automation Plugin 1.20.9 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of LAMBDATEST credentials stored in Jenkins. | 4.3 |
2023-10-25 | CVE-2023-46653 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Lambdatest-Automation Jenkins lambdatest-automation Plugin 1.20.10 and earlier logs LAMBDATEST Credentials access token at the INFO level, potentially resulting in its exposure. | 6.5 |