CVE-2024-39460

2024-06-2617:06:27

jenkins

github.com

jenkins

bitbucket

oauth

access token

build log

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Jenkins Bitbucket Branch Source Plugin 886.v44cf5e4ecec5 and earlier prints the Bitbucket OAuth access token as part of the Bitbucket URL in the build log in some cases.

CNA Affected

[
  {
    "vendor": "Jenkins Project",
    "product": "Jenkins Bitbucket Branch Source Plugin",
    "versions": [
      {
        "version": "0",
        "versionType": "maven",
        "lessThanOrEqual": "886.v44cf5e4ecec5",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]