Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Jenkins Subscribe
Filtered by product Zephyr Enterprise Test Management
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-1003085 1 Jenkins 1 Zephyr Enterprise Test Management 2020-07-15 4.0 MEDIUM 6.5 MEDIUM
A missing permission check in Jenkins Zephyr Enterprise Test Management Plugin in the ZeeDescriptor#doTestConnection form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.
CVE-2019-1003084 1 Jenkins 1 Zephyr Enterprise Test Management 2020-06-23 4.3 MEDIUM 6.5 MEDIUM
A cross-site request forgery vulnerability in Jenkins Zephyr Enterprise Test Management Plugin in the ZeeDescriptor#doTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server.
CVE-2020-2145 1 Jenkins 1 Zephyr Enterprise Test Management 2020-03-10 2.1 LOW 5.5 MEDIUM
Jenkins Zephyr Enterprise Test Management Plugin 1.9.1 and earlier stores its Zephyr password in plain text on the Jenkins master file system.