0.001 Low
EPSS
Percentile
32.3%
An exposure of sensitive information vulnerability exists in Jenkins SaltStack Plugin 3.1.6 and earlier in SaltAPIBuilder.java, SaltAPIStep.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins.
jenkins.io/security/advisory/2018-07-30/