Published: 06/05/2020 Updated: 25/10/2023

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Jenkins Credentials Binding Plugin 1.22 and previous versions does not mask (i.e., replace with asterisks) secrets in the build log when the build contains no build steps.

Vulnerable Product	Search on Vulmon	Subscribe to Product
jenkins credentials binding

Synopsis Important: OpenShift Container Platform 4420 jenkins-2-plugins security update Type/Severity Security Advisory: Important Topic An update for jenkins-2-plugins is now available for Red Hat OpenShift Container Platform 44Red Hat Product Security has rated this update as having a security impact ...

Synopsis Important: OpenShift Container Platform 4340 jenkins-2-plugins security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 4340 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Secur ...

Synopsis Low: OpenShift Container Platform 4340 security and bug fix update Type/Severity Security Advisory: Low Topic An update is now available for Red Hat OpenShift Container Platform 43Red Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring S ...

oss-sec mailing list archives   By Date By Thread </form>    Multiple vulnerabilities in Jenkins plugins   From: Daniel Beck <ml () ...

CWE-522 https://jenkins.io/security/advisory/2020-05-06/#SECURITY-1374 http://www.openwall.com/lists/oss-security/2020/05/06/3 https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2020:3625

CVE-2020-2181

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

References

Vulmon Search

About

Products

Connect