Lucene search
JenkinsCVELIST:CVE-2023-40339HistoryAug 16, 2023 - 2:32 p.m.
CVE-2023-40339
2023-08-1614:32:51
jenkins
www.cve.org
4
jenkins
config file provider
plugin
credentials
build log
cve-2023-40339
Jenkins Config File Provider Plugin 952.va_544a_6234b_46 and earlier does not mask (i.e., replace with asterisks) credentials specified in configuration files when they’re written to the build log.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "Jenkins Config File Provider Plugin",
"vendor": "Jenkins Project",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "953.v0432a_802e4d2",
"versionType": "maven"
},
{
"status": "unaffected",
"version": "951.953.vdfc5f6e2dcc4"
}
]
}
]Related
alpinelinux
alpinelinux
CVE-2023-40339
2023-08-16 15:15:11
prion
prion
Code injection
2023-08-16 15:15:00
github
github
veracode
veracode
Information Exposure
2023-08-18 07:09:56
osv
osv
CVE-2023-40339
2023-08-16 15:15:11
redhatcve
redhatcve
CVE-2023-40339
2023-08-17 06:48:47
nvd
nvd
CVE-2023-40339
2023-08-16 15:15:11
cve
cve
CVE-2023-40339
2023-08-16 15:15:11
nessus
nessus
RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2024:0777)
2024-04-28 00:00:00
Jenkins plugins Multiple Vulnerabilities (2023-08-16)
2023-08-21 00:00:00
RHEL 8 : Jenkins and Jenkins-2-plugins (RHSA-2024:0778)
2024-04-29 00:00:00
redhat
redhat
(RHSA-2024:0777) Important: jenkins and jenkins-2-plugins security update
2024-02-12 10:20:42
(RHSA-2024:0778) Important: Jenkins and Jenkins-2-plugins security update
2024-02-12 10:30:15
