Vulnerabilities > Jenkins > Sofy AI

DATE CVE VULNERABILITY TITLE RISK
2019-10-16 CVE-2019-10447 Cleartext Storage of Sensitive Information vulnerability in Jenkins Sofy.Ai 1.0.0/1.0.1/1.0.3
Jenkins Sofy.AI Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
network
low complexity
jenkins CWE-312
4.3