Lucene search
K

plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin

๐Ÿ—“๏ธย 23 Feb 2023ย 00:01:27Reported byย RedHatTypeย 
redhat
ย redhat
๐Ÿ”—ย access.redhat.com๐Ÿ‘ย 6ย Views

Vulnerability: Blue Ocean Plugin SCM API exposes per-user credentials; attackers with Job Configure can access them.

Related
Packages
Refs
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux8anyjenkins-2-plugins0:4.9.1675668922-1.el8.noarchjenkins-2-plugins-0:4.9.1675668922-1.el8.noarch.noarch.rpm

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

28 Jun 2026 12:38Current
5.8Medium risk
Vulners AI Score5.8
CVSS 24
CVSS 3.16.5
EPSS0.00922
6