Security for everyone

GoCD Encryption Key Exposure Vulnerability Scanner

There is a Encryption Key Exposure vulnerability in GoCD, which allow remote attackers to read encryption key.


Short Info



Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one




GoCD, written in Java, is a popular CI/CD solution with a large range of users from NGOs to Fortune 500 companies with billions of dollars in revenue. Naturally, this makes it a critical piece of infrastructure and an extremely attractive target for attackers. In order to automate build and release processes, a centralized CI/CD solution has access to various production environments and private source code repositories. 

A vulnerability that lets unauthenticated attackers leak encryption key from a vulnerable GoCD Server instance.

cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture