Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2022/05/13 1:48 a.m.5 views

com.nirima:docker-plugin (>=0.17 <=1.0.4), com.testinium.jenkins:testinium (=1.0) +34 more potentially affected by CVE-2018-1000057 via org.jenkins-ci.plugins:credentials-binding (>=1.10 <=1.13)

org.jenkins-ci.plugins:credentials-binding MAVEN version =1.10, =0.17, =1.0.43, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.1-preview-1, =0.1.0, =0.1.1, =0.3.0, =0.4.1 and more Source cves: CVE-2018-1000057 Source advisory: OSV:GHSA-38XM-XHVJ-Q2QF...

4.3CVSS5.8AI score0.00676EPSS
Exploits0
CVE
CVE
added 2018/02/09 11:0 p.m.61 views

CVE-2018-1000057

CVE-2018-1000057 affects Jenkins Credentials Binding Plugin (version 1.14 and earlier). The issue is that Jenkins masks passwords in logs but can transform values (e.g., resolving environment variable references), causing password-like values to be exposed or recoverable. This is due to substitut...

4.3CVSS4.6AI score0.00676EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2018/02/06 9:49 p.m.32 views

CVE-2018-1000057

Jenkins Credentials Binding Plugin 1.14 and earlier masks passwords it provides to build processes in their build logs. Jenkins however transforms provided password values, e.g. replacing environment variable references, which could result in values different from but similar to configured...

5.3CVSS1.9AI score0.00676EPSS
Exploits0References1
CVE
CVE
added 2017/07/13 8:0 p.m.28 views

CVE-2017-1000057

CVE-2017-1000057 entry is rejected/not used as stated.

7.3AI score
Exploits0
Cvelist
Cvelist
added 2017/07/13 8:0 p.m.11 views

CVE-2017-1000057

...

Exploits0
Rows per page
Query Builder