Jenkins Configuration as Code 0.5 Alpha for Jenkins
Approved changes feed: RSS · Atom
cpe:2.3:a:jenkins:configuration_as_code:0.5:alpha:*:*:*:jenkins:*:*
part: a version: 0.5 update: alpha
| Vendor | Jenkins (d708d718-2e77-5ca3-ae9c-38ee4d256744) |
|---|---|
| Product | Configuration As Code (f9789db4-484e-530b-a9cb-c2a43d9914ad) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | jenkins |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/jenkinsci/configuration-as-code-plugin |
purl2cpe | 2026-06-01 10:14:18.192981 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-1000610 |
vulnerable | 2026-06-03 14:37:52.639944 |
Details available
A exposure of sensitive information vulnerability exists in Jenkins Configuration as Code Plugin 0.7-alpha and earlier in DataBoundConfigurator.java, Attribute.java, BaseConfigurator.java, ExtensionConfigurator.java that allows attackers with access to Jenkins log files to obtain the passwords configured using Configuration as Code Plugin.
Published: 2018-06-26T17:00:00.000Z
Updated: 2024-09-17T02:11:28.974Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-1000609 |
vulnerable | 2026-06-03 14:37:52.638302 |
Details available
A exposure of sensitive information vulnerability exists in Jenkins Configuration as Code Plugin 0.7-alpha and earlier in ConfigurationAsCode.java that allows attackers with Overall/Read access to obtain the YAML export of the Jenkins configuration.
Published: 2018-06-26T17:00:00.000Z
Updated: 2024-09-17T03:02:13.400Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.