4 matches found
com.openshift.jenkins:openshift-pipeline (>=1.0.22 <=1.0.57), io.fabric8.jenkins.plugins:openshift-sync (>=0.0.8 <=1.0.45) potentially affected by CVE-2018-1000187 via org.csanchez.jenkins.plugins:kubernetes (>=0.10 <=1.18.2)
org.csanchez.jenkins.plugins:kubernetes MAVEN version =0.10, =1.0.22, =0.0.8, =1.0.45 Source cves: CVE-2018-1000187 Source advisory: OSV:GHSA-V67X-GPG7-MWV3...
CVE-2018-1000187
A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being written to logs...
CVE-2018-1000187
A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being written to logs...
CVE-2018-1000187
The CVE-2018-1000187 entry relates to Jenkins Kubernetes Plugin (versions 1.7.0 and older) where ContainerExecDecorator.java exposes sensitive information by writing variables (such as passwords) to logs. The connected documents corroborate an information-disclosure vulnerability in this plugin t...