Lucene search
Veracode Vulnerability DatabaseVERACODE:45838HistoryMar 12, 2024 - 5:47 a.m.
Information Disclosure
2024-03-1205:47:56
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
information disclosure
sony mobile
jenkins
build logs
sensitive data
software
com.sonymobile.jenkins.plugins.mq, mq-notifier is vulnerable to Information Disclosure. The vulnerability is due to logging potentially sensitive build parameters as part of debug information in build logs by default, which could lead to the unintentional exposure of sensitive data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mq notifier | le | 1.4.0 | |
| mq notifier | le | 1.4.0 |
Related
cve
cve
CVE-2024-28154
2024-03-06 17:15:10
nvd
nvd
CVE-2024-28154
2024-03-06 17:15:10
prion
prion
Default credentials
2024-03-06 17:15:00
osv
osv
Jenkins MQ Notifier Plugin exposes sensitive information in build logs
2024-03-06 18:30:38
github
github
Jenkins MQ Notifier Plugin exposes sensitive information in build logs
2024-03-06 18:30:38
cvelist
cvelist
CVE-2024-28154
2024-03-06 17:01:57
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2024-03-06)
2024-03-07 00:00:00