CVE-2022-23109 is a vulnerability in Jenkins Hashicorp Vault
Published on January 12, 2022

Jenkins HashiCorp Vault Plugin 3.7.0 and earlier does not mask Vault credentials in Pipeline build logs or in Pipeline step descriptions when Pipeline: Groovy Plugin 2.85 or later is installed.

NVD

Products Associated with CVE-2022-23109

Want to know whenever a new CVE is published for Jenkins Hashicorp Vault? stack.watch will email you.

Jenkins Hashicorp Vault

Affected Versions

Jenkins project Jenkins HashiCorp Vault Plugin:

Version unspecified, <= 3.7.0 is affected.

Exploit Probability

EPSS

0.05%

Percentile

14.37%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-23109 is a vulnerability in Jenkins Hashicorp VaultPublished on January 12, 2022

Products Associated with CVE-2022-23109

Affected Versions

Exploit Probability

CVE-2022-23109 is a vulnerability in Jenkins Hashicorp Vault
Published on January 12, 2022