Improper Value Masking in Jenkins Configuration as Code Plugin

Improper Value Masking in Jenkins Configuration as Code Plugin

CVE-2019-10343 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Jenkins Configuration as Code Plugin 1.24 and earlier did not properly apply masking to values expected to be hidden when logging the configuration being applied.

Learn more about our Web Application Penetration Testing UK.