Lucene search

CVE-2023-2632

🗓️ 16 May 2023 18:17:15Reported by SNPSType

Jenkins Code Dx Plugin 3.1.0 stores unencrypted API keys in config.xm

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
AlpineLinux	CVE-2023-2632	16 May 202318:15	–	alpinelinux
NVD	CVE-2023-2632	16 May 202318:15	–	nvd
Prion	Design/Logic Flaw	16 May 202318:15	–	prion
OSV	Jenkins Code Dx Plugin stores API keys in plain text	16 May 202318:30	–	osv
Cvelist	CVE-2023-2632 API keys stored and displayed in plain text by Code Dx Plugin	16 May 202317:54	–	cvelist
Veracode	Information Disclosure	30 May 202307:35	–	veracode
Vulnrichment	CVE-2023-2632 API keys stored and displayed in plain text by Code Dx Plugin	16 May 202317:54	–	vulnrichment
Github Security Blog	Jenkins Code Dx Plugin stores API keys in plain text	16 May 202318:30	–	github
Tenable Nessus	Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.17 Multiple Vulnerabilities (CloudBees Security Advisory 2023-05-16)	16 May 202300:00	–	nessus

Nvd

Node

jenkins code_dxRange≤3.1.0jenkins

[
  {
    "defaultStatus": "unaffected",
    "product": "Jenkins Code Dx Plugin",
    "vendor": "Jenkins",
    "versions": [
      {
        "lessThanOrEqual": "3.1.0",
        "status": "affected",
        "version": "0",
        "versionType": "maven"
      }
    ]
  }
]

Source	Link
jenkins	www.jenkins.io/security/advisory/2023-05-16/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 May 2023 18:15Current

4.5Medium risk

Vulners AI Score4.5

CVSS34.3

EPSS0.00338

SSVC