CVE-2022-25184

2022-02-1516:11:08

jenkins

raw.githubusercontent.com

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.8%

JSON

Jenkins Pipeline: Build Step Plugin 2.15 and earlier reveals password parameter default values when generating a pipeline script using the Pipeline Snippet Generator, allowing attackers with Item/Read permission to retrieve the default password parameter value from jobs.