A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being written to logs.
CVSS v3.0 Score
6.5
/ 10.0
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Information
- Published
- 5 juin 2018
- Updated
- 21 nov. 2024
- Status
- Modified
- Source
- cve@mitre.org
Affected products
jenkins kubernetesAll Kubernetes CVEs →
Versions : 1.7.0
Weaknesses (CWE)
CWE-200
References (2)
Similar CVEs
Other vulnerabilities of type CWE-200
Loading…
Monitor your products
Get automatic alerts for every new CVE affecting your equipment.