| |
Vulnerability CVE-2022-38663
Published: 2022-08-23
| Description: |
Jenkins Git Plugin 4.11.4 and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log provided by the Git Username and Password (`gitUsernamePassword`) credentials binding. |
Type:
CWE-522 (Insufficiently Protected Credentials)
References: |
https://www.jenkins.io/security/advisory/2022-08-23/#SECURITY-2796
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
