Jenkins · Jenkins Subversion Plugin · CVE-2013-6372
**Name of the Vulnerable Software and Affected Versions**
Jenkins Subversion plugin versions prior to 1.54
**Description**
The issue allows local users to obtain passwords and SSH private keys by reading a subversion.credentials file, due to the storage of credentials using base64 encoding.
**Recommendations**
For versions prior to 1.54, update to version 1.54 or later to resolve the issue.