VDB
CISA-2023-33000
CISA-2023-33000
PUBLISHED
CVSS 7.5 HIGH
Reported by jenkins · Published May 16, 2023
Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.149 and earlier does not mask credentials displayed on the configuration form, increasing the potential for attackers to observe and capture them.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Jenkins Project | Jenkins NS-ND Integration Performance Publisher Plugin | 0 |
| Jenkins Project | Jenkins NS-ND Integration Performance Publisher Plugin | 0, 0 |
Timeline
- May 16, 2023 CVE Published
- Jan 23, 2025 CVE Updated
References
- Jenkins Security Advisory 2023-05-16 vendor-advisory