Jenkins Gradle Plugin 2.8 Credentials Leak in Unmasked Build Log
CVE-2023-39152 Published on July 26, 2023

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

Vendor Advisory NVD

Products Associated with CVE-2023-39152

Want to know whenever a new CVE is published for Jenkins Gradle? stack.watch will email you.

Jenkins Gradle

Affected Versions

Jenkins Project Jenkins Gradle Plugin Version 2.8 is affected by CVE-2023-39152

Exploit Probability

EPSS

0.11%

Percentile

30.01%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Jenkins Gradle Plugin 2.8 Credentials Leak in Unmasked Build LogCVE-2023-39152 Published on July 26, 2023

Products Associated with CVE-2023-39152

Affected Versions

Exploit Probability

Jenkins Gradle Plugin 2.8 Credentials Leak in Unmasked Build Log
CVE-2023-39152 Published on July 26, 2023