Lucene search
JenkinsCVELIST:CVE-2023-41934HistorySep 06, 2023 - 12:08 p.m.
CVE-2023-41934
2023-09-0612:08:55
jenkins
www.cve.org
security
jenkins
pipeline
maven
integration
plugin
credentials
build logs
username masking
cve-2023-41934
Jenkins Pipeline Maven Integration Plugin 1330.v18e473854496 and earlier does not properly mask (i.e., replace with asterisks) usernames of credentials specified in custom Maven settings in Pipeline build logs if “Treat username as secret” is checked.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Jenkins Pipeline Maven Integration Plugin",
"vendor": "Jenkins Project",
"versions": [
{
"lessThanOrEqual": "1330.v18e473854496",
"status": "affected",
"version": "0",
"versionType": "maven"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-09-06 13:15:00
osv
osv
CVE-2023-41934
2023-09-06 13:15:10
Improper masking of credentials in Jenkins Pipeline Maven Integration Plugin
2023-09-06 15:30:26
cve
cve
CVE-2023-41934
2023-09-06 13:15:10
nvd
nvd
CVE-2023-41934
2023-09-06 13:15:10
alpinelinux
alpinelinux
CVE-2023-41934
2023-09-06 13:15:10
github
github
Improper masking of credentials in Jenkins Pipeline Maven Integration Plugin
2023-09-06 15:30:26
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2023-09-06)
2023-09-07 00:00:00