CVE-2023-39152

CVE-2023-39152

EPSS 0.6%

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

Produtos afetados

Jenkins Project · Jenkins Gradle Plugin

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208 http://www.openwall.com/lists/oss-security/2023/07/26/2