Jenkins PaaSLane Estimate Plugin 1.0.4 and earlier does not mask PaaSLane authentication token
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
Cvelist | CVE-2023-50777 | 13 Dec 202317:30 | – | cvelist |
NVD | CVE-2023-50777 | 13 Dec 202318:15 | – | nvd |
Prion | Design/Logic Flaw | 13 Dec 202318:15 | – | prion |
Github Security Blog | Tokens stored in plain text by PaaSLane Estimate Plugin | 13 Dec 202318:31 | – | github |
OSV | Tokens stored in plain text by PaaSLane Estimate Plugin | 13 Dec 202318:31 | – | osv |
Tenable Nessus | Jenkins plugins Multiple Vulnerabilities (2023-12-13) | 14 Dec 202300:00 | – | nessus |
[
{
"vendor": "Jenkins Project",
"product": "Jenkins PaaSLane Estimate Plugin",
"versions": [
{
"version": "0",
"versionType": "maven",
"lessThanOrEqual": "1.0.4",
"status": "affected"
}
],
"defaultStatus": "unknown"
}
]
Source | Link |
---|---|
jenkins | www.jenkins.io/security/advisory/2023-12-13/ |
openwall | www.openwall.com/lists/oss-security/2023/12/13/4 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo