CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

jenkins

dynatrace_application_monitoring

3 known vulnerabilities · sorted by CVSS score

CVE-2019-10462

HIGH8.1

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials.

jenkins / dynatrace_application_monitoring

Network

Published Oct 23, 2019

CVE-2019-10461

HIGH7.8

Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system.

jenkins / dynatrace_application_monitoring

Local

Published Oct 23, 2019

CVE-2019-10463

MEDIUM6.5

A missing permission check in Jenkins Dynatrace Application Monitoring Plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials.

jenkins / dynatrace_application_monitoring

Network

Published Oct 23, 2019