Lucene search
JenkinsCVELIST:CVE-2023-40340HistoryAug 16, 2023 - 2:32 p.m.
CVE-2023-40340
2023-08-1614:32:51
jenkins
www.cve.org
1
jenkins
nodejs
credential leak
Jenkins NodeJS Plugin 1.6.0 and earlier does not properly mask (i.e., replace with asterisks) credentials specified in the Npm config file in Pipeline build logs.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Jenkins NodeJS Plugin",
"vendor": "Jenkins Project",
"versions": [
{
"lessThanOrEqual": "1.6.0",
"status": "affected",
"version": "0",
"versionType": "maven"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-08-16 15:15:00
nvd
nvd
CVE-2023-40340
2023-08-16 15:15:11
cve
cve
CVE-2023-40340
2023-08-16 15:15:11
veracode
veracode
Credential Exposure
2023-08-18 08:13:58
osv
osv
Jenkins NodeJS Plugin improper credential masking vulnerability
2023-08-16 15:30:18
github
github
Jenkins NodeJS Plugin improper credential masking vulnerability
2023-08-16 15:30:18
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2023-08-16)
2023-08-21 00:00:00