CVE-2023-39152

CVE-2023-39152

EPSS 0.6%

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

Affected products

Jenkins Project · Jenkins Gradle Plugin

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208 http://www.openwall.com/lists/oss-security/2023/07/26/2