Описание
Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log when push mode for durable task logging is enabled.
Ссылки
- Mailing ListThird Party Advisory
- Vendor Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3909.v1f2c633e8590 (включая)
cpe:2.3:a:jenkins:kubernetes:*:*:*:*:*:jenkins:*:*
EPSS
Процентиль: 17%
0.00055
Низкий
7.5 High
CVSS3
Дефекты
CWE-319
CWE-319
Связанные уязвимости
CVSS3: 7.5
redhat
около 2 лет назад
Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log when push mode for durable task logging is enabled.
CVSS3: 4.3
github
около 2 лет назад
Jenkins Kubernetes Plugin does not properly mask credentials
EPSS
Процентиль: 17%
0.00055
Низкий
7.5 High
CVSS3
Дефекты
CWE-319
CWE-319