← Back

Zephyr For Jira Test Management

zephyr_for_jira_test_management

Vendor: Jenkins • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-2216
1Jenkins
1Zephyr For Jira Test Management
Jun 17, 2026
Jul 2, 2020
N/A· v4
4.3 MEDIUM· v3
4.0 MEDIUM· v2
A missing permission check in Jenkins Zephyr for JIRA Test Management Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified username...Show more
A missing permission check in Jenkins Zephyr for JIRA Test Management Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified username and password.Show less
CVE-2020-2215
1Jenkins
1Zephyr For Jira Test Management
Jun 17, 2026
Jul 2, 2020
N/A· v4
4.3 MEDIUM· v3
4.3 MEDIUM· v2
A cross-site request forgery vulnerability in Jenkins Zephyr for JIRA Test Management Plugin 1.5 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified username and password...Show more
A cross-site request forgery vulnerability in Jenkins Zephyr for JIRA Test Management Plugin 1.5 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified username and password.Show less
CVE-2020-2154
1Jenkins
1Zephyr For Jira Test Management
Jun 17, 2026
Mar 9, 2020
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
Jenkins Zephyr for JIRA Test Management Plugin 1.5 and earlier stores its credentials in plain text in a global configuration file on the Jenkins master file system.