[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-10320":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":26,"downstream":27,"duplicates":32,"related":33,"reserved_at":9,"published_at":34,"modified_at":35,"state":36,"summary":37,"references_raw":46,"kevs":101,"epss":102,"epss_history":105,"metrics":363,"affected":376},"CVE-2019-10320","Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containing a PKCS#12 certificate.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-538","Insertion of Sensitive Information into Externally-Accessible File or Directory","The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-95","WSDL Scanning",[],[],[25],"GHSA-xm94-9jw8-p6hw",[],[28,30],{"_key":29},"RHBA-2019:1605",{"_key":31},"RHSA-2019:1636",[],[],"2019-05-21T13:00:22.000Z","2024-08-04T22:17:20.390Z","Modified",{"cisa_kev":38,"cisa_ransomware":38,"cisa_vendor":9,"epss_severity":39,"epss_score":40,"severity":41,"severity_score":42,"severity_version":43,"severity_source":44,"severity_vector":45,"severity_status":36},false,"low",0.0006,"medium",4.3,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",[47,56,61,67,72,78,82,88,93,97],{"url":48,"sources":49,"tags":52},"http://www.openwall.com/lists/oss-security/2019/05/21/1",[50,44,51],"cve.org","osv_maven",[53,54,55],"Mailing List","X Refsource MLIST","WEB",{"url":57,"sources":58,"tags":59},"http://seclists.org/fulldisclosure/2019/May/39",[50,44,51],[53,60,55],"X Refsource FULLDISC",{"url":62,"sources":63,"tags":64},"http://www.securityfocus.com/bid/108462",[50,44,51],[65,66,55],"VDB Entry","X Refsource BID",{"url":68,"sources":69,"tags":70},"https://wwws.nightwatchcybersecurity.com/2019/05/23/exploring-the-file-system-via-jenkins-credentials-plugin-vulnerability-cve-2019-10320/",[50,44],[71],"X Refsource MISC",{"url":73,"sources":74,"tags":75},"https://access.redhat.com/errata/RHBA-2019:1605",[50,44,51],[76,77,55],"Vendor Advisory","X Refsource REDHAT",{"url":79,"sources":80,"tags":81},"https://access.redhat.com/errata/RHSA-2019:1636",[50,44,51],[76,77,55],{"url":83,"sources":84,"tags":85},"https://jenkins.io/security/advisory/2019-05-21/#SECURITY-1322",[50,44,51],[86,87,76,55],"X Refsource CONFIRM","Mitigation",{"url":89,"sources":90,"tags":91},"https://nvd.nist.gov/vuln/detail/CVE-2019-10320",[51],[92],"Advisory",{"url":94,"sources":95,"tags":96},"https://github.com/jenkinsci/credentials-plugin/commit/40d0b5cc53c265b601ffaa4469310fad390a80fb",[51],[55],{"url":98,"sources":99,"tags":100},"https://wwws.nightwatchcybersecurity.com/2019/05/23/exploring-the-file-system-via-jenkins-credentials-plugin-vulnerability-cve-2019-10320",[51],[55],[],{"date":103,"score":40,"percentile":104},"2026-06-04",0.19049,[106,110,113,116,119,122,125,128,131,134,137,140,142,145,148,152,155,158,160,163,166,169,171,173,176,179,182,185,187,189,192,195,198,201,203,206,209,212,215,218,221,224,227,230,232,235,238,241,244,246,249,252,255,258,261,264,267,269,271,274,277,280,283,286,289,292,294,297,299,302,305,307,310,312,315,318,321,324,327,330,333,336,339,342,345,348,351,354,357,360],{"date":107,"score":108,"percentile":109},"2025-11-04",0.00118,0.3137,{"date":111,"score":108,"percentile":112},"2025-11-05",0.31344,{"date":114,"score":108,"percentile":115},"2025-11-06",0.31349,{"date":117,"score":108,"percentile":118},"2025-11-07",0.3136,{"date":120,"score":108,"percentile":121},"2025-11-08",0.31363,{"date":123,"score":108,"percentile":124},"2025-11-09",0.31341,{"date":126,"score":108,"percentile":127},"2025-11-10",0.31292,{"date":129,"score":108,"percentile":130},"2025-11-11",0.31309,{"date":132,"score":108,"percentile":133},"2025-11-12",0.31354,{"date":135,"score":108,"percentile":136},"2025-11-13",0.31372,{"date":138,"score":108,"percentile":139},"2025-11-14",0.31374,{"date":141,"score":108,"percentile":109},"2025-11-15",{"date":143,"score":108,"percentile":144},"2025-11-16",0.31338,{"date":146,"score":108,"percentile":147},"2025-11-17",0.31313,{"date":149,"score":150,"percentile":151},"2025-11-18",0.00138,0.28289,{"date":153,"score":150,"percentile":154},"2025-11-19",0.28313,{"date":156,"score":150,"percentile":157},"2025-11-20",0.28327,{"date":159,"score":108,"percentile":133},"2025-11-21",{"date":161,"score":108,"percentile":162},"2025-11-22",0.31366,{"date":164,"score":108,"percentile":165},"2025-11-23",0.31339,{"date":167,"score":108,"percentile":168},"2025-11-24",0.31318,{"date":170,"score":108,"percentile":147},"2025-11-25",{"date":172,"score":108,"percentile":147},"2025-11-26",{"date":174,"score":108,"percentile":175},"2025-11-27",0.31326,{"date":177,"score":108,"percentile":178},"2025-11-28",0.31307,{"date":180,"score":108,"percentile":181},"2025-11-29",0.31293,{"date":183,"score":108,"percentile":184},"2025-11-30",0.31269,{"date":186,"score":108,"percentile":112},"2025-12-01",{"date":188,"score":108,"percentile":136},"2025-12-02",{"date":190,"score":108,"percentile":191},"2025-12-03",0.31379,{"date":193,"score":108,"percentile":194},"2025-12-04",0.31284,{"date":196,"score":108,"percentile":197},"2025-12-05",0.31322,{"date":199,"score":108,"percentile":200},"2025-12-06",0.3132,{"date":202,"score":108,"percentile":127},"2025-12-07",{"date":204,"score":108,"percentile":205},"2025-12-08",0.31306,{"date":207,"score":108,"percentile":208},"2025-12-09",0.31356,{"date":210,"score":108,"percentile":211},"2025-12-10",0.31417,{"date":213,"score":108,"percentile":214},"2025-12-11",0.31451,{"date":216,"score":108,"percentile":217},"2025-12-12",0.31484,{"date":219,"score":108,"percentile":220},"2025-12-13",0.31472,{"date":222,"score":108,"percentile":223},"2025-12-14",0.31447,{"date":225,"score":108,"percentile":226},"2025-12-15",0.31401,{"date":228,"score":108,"percentile":229},"2025-12-16",0.3142,{"date":231,"score":108,"percentile":220},"2025-12-17",{"date":233,"score":108,"percentile":234},"2025-12-18",0.3152,{"date":236,"score":108,"percentile":237},"2025-12-19",0.31549,{"date":239,"score":108,"percentile":240},"2025-12-20",0.3153,{"date":242,"score":108,"percentile":243},"2025-12-21",0.31481,{"date":245,"score":108,"percentile":223},"2025-12-22",{"date":247,"score":108,"percentile":248},"2025-12-23",0.31431,{"date":250,"score":108,"percentile":251},"2025-12-24",0.31421,{"date":253,"score":108,"percentile":254},"2025-12-25",0.31496,{"date":256,"score":108,"percentile":257},"2025-12-26",0.31485,{"date":259,"score":108,"percentile":260},"2025-12-27",0.31493,{"date":262,"score":108,"percentile":263},"2025-12-28",0.31412,{"date":265,"score":108,"percentile":266},"2025-12-29",0.31376,{"date":268,"score":108,"percentile":109},"2025-12-30",{"date":270,"score":108,"percentile":229},"2025-12-31",{"date":272,"score":108,"percentile":273},"2026-01-01",0.3156,{"date":275,"score":108,"percentile":276},"2026-01-02",0.31546,{"date":278,"score":108,"percentile":279},"2026-01-03",0.31529,{"date":281,"score":108,"percentile":282},"2026-01-04",0.31391,{"date":284,"score":108,"percentile":285},"2026-01-05",0.31381,{"date":287,"score":108,"percentile":288},"2026-01-06",0.31394,{"date":290,"score":108,"percentile":291},"2026-01-07",0.31415,{"date":293,"score":108,"percentile":223},"2026-01-08",{"date":295,"score":108,"percentile":296},"2026-01-09",0.31443,{"date":298,"score":108,"percentile":296},"2026-01-10",{"date":300,"score":108,"percentile":301},"2026-01-11",0.31409,{"date":303,"score":108,"percentile":304},"2026-01-12",0.31348,{"date":306,"score":108,"percentile":175},"2026-01-13",{"date":308,"score":108,"percentile":309},"2026-01-14",0.31368,{"date":311,"score":108,"percentile":162},"2026-01-15",{"date":313,"score":108,"percentile":314},"2026-01-16",0.31392,{"date":316,"score":108,"percentile":317},"2026-01-17",0.3139,{"date":319,"score":108,"percentile":320},"2026-01-18",0.31333,{"date":322,"score":108,"percentile":323},"2026-01-19",0.31302,{"date":325,"score":108,"percentile":326},"2026-01-20",0.31287,{"date":328,"score":108,"percentile":329},"2026-01-21",0.31231,{"date":331,"score":108,"percentile":332},"2026-01-22",0.31207,{"date":334,"score":108,"percentile":335},"2026-01-23",0.31275,{"date":337,"score":108,"percentile":338},"2026-01-24",0.31291,{"date":340,"score":108,"percentile":341},"2026-01-25",0.31219,{"date":343,"score":108,"percentile":344},"2026-01-26",0.31139,{"date":346,"score":108,"percentile":347},"2026-01-27",0.31128,{"date":349,"score":108,"percentile":350},"2026-01-28",0.31103,{"date":352,"score":108,"percentile":353},"2026-01-29",0.3106,{"date":355,"score":108,"percentile":356},"2026-01-30",0.31048,{"date":358,"score":108,"percentile":359},"2026-01-31",0.31053,{"date":361,"score":108,"percentile":362},"2026-02-01",0.31134,[364,374],{"source":44,"cvss_v2_0":365,"cvss_v3_0":370,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":366,"baseSeverity":9,"vectorString":367,"impactScore":368,"exploitabilityScore":369},4,"AV:N/AC:L/Au:S/C:P/I:N/A:N",2.9,8,{"baseScore":42,"baseSeverity":371,"vectorString":45,"impactScore":372,"exploitabilityScore":373},"MEDIUM",2.3,7.2,{"source":51,"cvss_v2_0":9,"cvss_v3_0":375,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":42,"baseSeverity":9,"vectorString":45,"impactScore":372,"exploitabilityScore":373},[377,386,395],{"ecosystem":9,"name":378,"vendor":379,"product":380,"cpe_part":381,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":382},"Jenkins Credentials Plugin","jenkins project","jenkins credentials plugin","a",[383],{"version":384,"is_range":38,"range_type":50,"version_start":384,"version_start_type":385,"version_end":384,"version_end_type":385,"fixed_in":9},"2.1.18 and earlier","including",{"ecosystem":9,"name":387,"vendor":388,"product":387,"cpe_part":381,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":389},"credentials","jenkins",[390],{"version":391,"is_range":392,"range_type":393,"version_start":9,"version_start_type":9,"version_end":394,"version_end_type":385,"fixed_in":9},"lte2.1.18",true,"cpe","2.1.18",{"ecosystem":396,"name":397,"vendor":398,"product":387,"cpe_part":9,"purl_type":399,"purl_namespace":398,"purl_name":387,"source":9,"versions":400},"Maven","org.jenkins-ci.plugins:credentials","org.jenkins-ci.plugins","maven",[401],{"version":402,"is_range":392,"range_type":403,"version_start":9,"version_start_type":9,"version_end":404,"version_end_type":405,"fixed_in":9},"lt2_1_19","ecosystem","2.1.19","excluding"]